Whitehat Hacking and Penetration Testing Tutorial Video

Map the target's footprint by collecting domain names, ip blocks, and scope details, then document findings in a spreadsheet or database to guide footprinting and testing.

Learn how to extract information from dns using nslookup, host, and dig, including A, MX, SOA, and PTR records.

Identify network ranges by using whois, dns, and registries to map a domain to ip addresses and hosting blocks, exploring related hostnames while respecting scope and exclusions.

Explore Google hacking techniques to narrow search results, uncover error pages, version numbers, bash_history, and vulnerable web applications like Joomla, enabling targeted information gathering for penetration testers.

Explore Google hacking by using quotes and operators like index of, filetype, site, intitle, ext, and inurl to locate web.config files, password files, and sensitive documents.

Trace the TCP/IP history from ARPANET's 1969 origins, through NCP to TCP/IP, the first IMP router, and IPv6, highlighting 32 bit versus 128 bit addresses and NSFNET's role.

Explore the OSI seven-layer model and the four-layer TCP/IP stack, with a focus on physical, data link, network, transport, and the session, presentation, and application layers.

Wireshark enables deep network analysis of VoIP and other traffic, showing VoIP call statistics, endpoints and IP address details, flow and ladder diagrams, decode as and follow TCP streams.

Explore the history of cryptography from Caesar cipher and rot13 to Enigma and AES, tracing DES and Triple-DES 56- and 168-bit keys toward Rijndael with 128–256-bit options.

Explore the fundamentals of cryptography, including symmetric and asymmetric types, their key lengths, speed, and use cases, plus hybrid encryption and practical RSA key generation with OpenSSL.

Explore how certificates establish identity, enable encryption, and provide non-repudiation through RSA keys, certificate authorities, and digital signatures, with hands-on OpenSSL demonstrations.

Explore secure shell basics with ssh, including public key authentication, authorized_keys and known_hosts management, and using scp for encrypted file transfer and config aliases—while noting historical version 1 vulnerabilities.

Discover disk encryption across Windows, Mac, and Linux, including BitLocker with TPM and AES, FileVault, and GDecrypt, and why protecting client data matters when devices are lost.

Explore different scan types used in ethical hacking, including ping, port, and vulnerability scans, and learn how open ports, banners, and version information guide security assessments.

Explore idle, Xmas, and fin scans in nmap to verify port status behind firewalls, using a zombie host and IP identification header behavior, with Wireshark captures.

Explore war dialing, identifying modems as out-of-band access to critical infrastructure, and review tools like ToneLoc, THC-Scan, and PhoneTag that enable this practice.

Understand vulnerability scanning and how scanners probe open ports, banners, and versions to identify risks, including Nessus, Nexpose Community, and Qualys guard with limitations like false positives.

Learn to perform vulnerability scanning with Nessus, create and configure scan policies, adjust plugins and credentials, run scans, and review reports for issues like self-signed SSL certificates and open ports.

Explore enumeration techniques to reveal system information, including banner grabbing, DNS queries, zone transfers, and Windows network discovery using net commands, LDAP, and null sessions.

Explore how SNMP enables managing network devices by extracting information and sometimes setting configuration parameters, and compare versions 1, 2, and 3 with security improvements.

Discover how the lightweight directory access protocol (LDAP) organizes data about users and resources in a hierarchical directory, including Active Directory, and compare graphical tools like JXplorer and LdapMiner.

Learn how proxies forward web requests, cache content for bandwidth savings, block sites, and insert antivirus checks; configure Firefox to use a proxy and analyze requests and responses for debugging.

Explore how tunneling hides data inside other streams to enable private transmission and bypass firewalls, with practical SSH port forwarding and HTTP tunnel methods.

Explore privilege escalation across Linux, Windows, and Mac OS, using sudo, su, and administrator prompts, and understand set you id bit and root access.

Explore antivirus evasion tactics by showing how malware can morph its hash, use encryption, packing, and encoding to bypass signature-based and anomaly-based detectors, highlighting challenges and false positives.

Explore virus types such as boot sector, shell, multipartite, macros, and polymorphic and metamorphic varieties, and learn how they infect systems, mutate, and how signatures change.

Explore malware analysis basics using VirusTotal to identify a Zeus variant, review strings and DLL imports, and use PEID to detect UPX packing and unpacking for debugging memory layout.

Explore the differences between a denial of service attack and a distributed denial of service attack, including master–slave botnets, command and control networks, and blowfish encryption.

Demonstrates web application testing with Burp Suite, mapping pages with a spider and scanning for issues like cross site scripting, CSRF, and SQL injection, then validating results.

Learn how HTTP's stateless design leads web apps to use sessions and cookies, enabling session IDs that can be hijacked, compromising shopping carts and accounts.

Examine rogue access points and attacks, including cloning a WPA2 personal network, gathering authentication data, and sniffing data from open or unsecured wifi in enterprise and public settings.

Learn wireless sniffing techniques using Wireshark and Airodump to capture packets on wireless networks, including layer one and two details and WPA encryption considerations.

Protect wireless networks by configuring the access point, adjusting SSID, channels, and encryption. Enforce MAC authentication and access policies to limit who can connect.