Ethical hacking is the authorized practice of testing computer systems, networks, and applications to identify security weaknesses. It helps organizations fix vulnerabilities before malicious hackers can exploit them.
- Performed with legal permission from the system owner.
- Identifies vulnerabilities, risks, and security flaws.
- Helps strengthen system and network security.
- Uses the same techniques as attackers, but ethically.
- Plays a vital role in cybersecurity and risk management.
Foundations of Cybersecurity
Start with basic concepts of cybersecurity, including ethical hacking principles, security models, cryptography, and networking fundamentals required to understand how systems are protected from cyber threats.
- Introduction to Ethical Hacking
- Phases of Hacking
- Understanding CIA Triad
- Risk, Threat, Vulnerability, Exploit
- Security Models
- Cryptography Concepts
- OSI Model
- TCP/IP Model
Linux & Command Line
This section covers Linux fundamentals, command-line usage, file systems, permissions, users, processes, and basic networking commands essential for security professionals.
- Linux file system structure
- Package management
- User Management
- Permission management
- Process management
- Networking commands
Networking & Protocols
This section explains how data travels across networks using protocols like TCP/IP, DNS, HTTP, and how systems communicate securely and efficiently.
Footprinting & Reconnaissance
This phase focuses on gathering information about a target using passive and active techniques such as WHOIS, OSINT, Google dorking, and metadata analysis.
- Introduction to Footprinting
- WHOIS Reconnaissance
- Art of Reconnaissance
- Google Dorking
- Metadata extraction
- OSINT techniques
Scanning & Enumeration
This section deals with identifying live hosts, open ports, services, vulnerabilities, and extracting detailed system information using scanning and enumeration techniques.
Enumeration:
Tools:
Exploitation with Metasploit
This section introduces exploiting vulnerabilities using the Metasploit framework, including payloads, modules, post-exploitation, and privilege escalation.
- Introduction to Metasploit
- Metasploit Framework
- Install Metasploitable 2
- Metasploit Modules
- Adding a third party Module into Metasploit Framework
Post Exploitation
Wireless Hacking
This section covers wireless network security, Wi-Fi encryption standards, and common wireless attacks using tools like Aircrack-ng.
- Wireless Security
- Wi-Fi Security Protocols
- WPA2 Vs WPA3
- Wireless Attack Tools
- Process of Aircrack-ng
- WPS Attack
Web Application Hacking
This section focuses on identifying and exploiting vulnerabilities in web applications, APIs, authentication mechanisms, and session management.
- WAPT
- HTTP protocol
- Cookies & Sessions
- Authentication
- Authentication & Authorization
- API security
- JWT attacks
- CSRF
- SSRF
- Business Logic
Tools:
OWASP Top 10
This section explains the most critical web application security risks identified by OWASP and how attackers exploit them.
- Introduction
- Broken Access Control
- Injection
- Insecure Design
- Cryptographic Failures
- Security Misconfiguration
- Vulnerable and Outdated Components
- Identification and Authentication Failures
- Software and Data Integrity Failures
- Security Logging and Monitoring Failures
- SSRF(include CSRF too)
Attacking AD and Active Directory Network-Based Attacks
This section covers attacks on Active Directory environments, including enumeration, credential attacks, lateral movement, and post-exploitation techniques.
- AD Lab Setup
- Initial Attack Vector
- LLMNR Poisoning
- SMB Relay Attacks
- IPv6 Attack and DNS Takeover
- Post Enumeration
- Domain Enumeration
- BloodHound and Grabbing Data
Security Basics
This section covers fundamental security concepts, common attack surfaces, and basic defensive techniques used to protect systems, applications, and data.
- IoT Devices Vulnerability and Attack Vectors
- CCTV Security and Attack Vectors
- Introduction to Email Security
- Types of Email Attacks
- Privacy Enhanced Mail
- Mobile Application Security
- Android Penetration Testing
- Static Application Security Testing
- Dynamic Application Security Testing
Malware - Fundamentals and Analysis
This section focuses on understanding malware behavior, analysis techniques, real-world attack chains, and tools used to detect and investigate malicious software.
- Understanding Malware
- Static Malware Analysis
- Dynamic Malware Analysis
- Hashing & Signatures
- Lab Setup For Malware Analysis
- Sandboxed isolated VMs
- Malware analysis using process monitor
- Emotet -> TrickBot -> Ryuk: Phish-to-Ransomware Chain
- Antivirus & Threat Intelligence Services