[FORGOTTEN] CISCO DIVD Academy Ethical Hacker

Learn the art of offensive security to uncover cyber threats and vulnerabilities before the cybercriminals do.
SCHEDULE
Aug 27, 2023 - Aug 30, 2024
Languages
English
Instructor
Victor Gevers
https://skillsforall.com/launch?id=80c156bc-84a4-47c9-a233-5eafe7bdde82&tab=curriculum&view=a2f2eff1-791f-5595-8680-4a3b27778d2e

overview


i started ripping this course on August 30th of 2023 
so some things may be a bit different if you take the course
https://skillsforall.com/course/ethical-hacker?courseLang=en-US
arn the art of offensive security to uncover cyber threats and vulnerabilities before the cybercriminals do.
SCHEDULEL: Aug 27, 2023 - Aug 30, 2024
Language: English
Instructor: Victor Gevers
Estimated ammount of time required to complete: 70 Hours
difficulty: Intermediate
Number of labs: 34
pacing: Self-Paced

Instructor

  • Victor Gevers
    Victor Gevers
The digital landscape is evolving at an unprecedented rate and cyber threats lurk around every corner. Cybersecurity resilience in the modern world cannot be just an add on - it's a necessity. Offensive security professionals like ethical hackers and penetration testers can help proactively discover unknown threats and address them before the cybercriminals do.

This course is designed to prepare you with an Ethical Hacker skillset and give you a solid understanding of offensive security. You will become proficient in the art of scoping, executing, and reporting on vulnerability assessments, while recommending mitigation strategies. Follow an engaging gamified narrative throughout the course and get lots of practice with hands-on labs inspired by real-world scenarios.

After completing this course, continue your cybersecurity career in offensive security as an ethical hacker or penetration tester. Or use this course to strengthen your defensive security knowledge. By understanding the mindset of threat actors, you will be able to more effectively implement security controls and monitor, analyze, and respond to current security threats.

Prerequisites:
Junior Cybersecurity Analyst Career Path, or equivalent entry-level cybersecurity knowledge
Basic programming knowledge
what you will learn.
badge
Course Introduction
expand
expand
Course Introduction
startWelcome to the Ethical Hacker Course
startThe Fictional Companies in the Ethical Hacker Course
startWhat Will I Learn in This Course?
startEthical Hacking Statement
badge
Module 1: Introduction to Ethical Hacking and Penetration Testing
expand
expand
1.0. Introduction
start1.0.1 Why Should I Take This Module?
start1.0.2 What Will I Learn in This Module?
expand
1.1. Understanding Ethical Hacking and Penetration Testing
start1.1.1 Overview
start1.1.2 Why Do We Need to Do Penetration Testing?
start1.1.3 Lab - Researching PenTesting Careers
start1.1.4 Threat Actors
expand
1.2. Exploring Penetration Testing Methodologies
start1.2.1 Overview
start1.2.2 Why Do We Need to Follow a Methodology for Penetration Testing?
start1.2.3 Environmental Considerations
start1.2.4 Practice - Types of Penetration Tests
start1.2.5 Surveying Different Standards and Methodologies
start1.2.6 Lab - Compare Pentesting Methodologies
expand
1.3. Building Your Own Lab
start1.3.1 Overview
start1.3.2 Requirements and Guidelines for Penetration Testing Labs
start1.3.3 What Tools Should You Use in Your Lab?
start1.3.4 Practice - Requirements and Guidelines for Penetration Testing Labs
start1.3.5 What If You Break Something?
start1.3.6 Lab - Deploy a Pre-Built Kali Linux Virtual Machine (VM)
start1.3.7 Lab - Investigate Kali Linux
expand
1.4. Summary
start1.4.1 What Did I Learn in this Module?
start1.4.2 Reflection Questions
start1.4.3 Quiz - Introduction to Ethical Hacking and Penetration Testing
badge
Module 2: Planning and Scoping a Penetration Testing Assessment
expand
expand
2.0. Introduction
start2.0.1 Why Should I Take This Module?
start2.0.2 What Will I Learn in This Module?
expand
2.1. Comparing and Contrasting Governance, Risk, and Compliance Concepts
start2.1.1 Overview
start2.1.2 Regulatory Compliance Considerations
start2.1.3 Local Restrictions
start2.1.4 Practice - Regulations
start2.1.5 Legal Concepts
start2.1.6 Contracts
start2.1.7 Disclaimers
start2.1.8 Practice - Legal Concepts
start2.1.9 Lab - Compliance Requirements and Local Restrictions
expand
2.2. Explaining the Importance of Scoping and Organizational or Customer Requirements
start2.2.1 Overview
start2.2.2 Rules of Engagement
start2.2.3 Practice - Rules of Engagement
start2.2.4 Target List and In-Scope Assets
start2.2.5 Practice - Target List and In-Scope Assets
start2.2.6 Validating the Scope of Engagement
start2.2.7 Strategy: Unknown vs. Known Environment Testing
start2.2.8 Practice - Strategy: Unknown vs. Known Environment Testing
start2.2.9 Lab - Pre-Engagement Scope and Planning
start2.2.10 Lab - Create a Pentesting Agreement
expand
2.3. Demonstrating an Ethical Hacking Mindset by Maintaining Professionalism and Integrity
start2.3.1 Overview
start2.3.2 Practice - Demonstrate an Ethical Hacking Mindset
start2.3.3 Lab - Personal Code of Conduct
expand
2.4. Summary
start2.4.1 What Did I Learn in this Module?
start2.4.2 Reflection Questions
start2.4.3 Quiz - Planning and Scoping a Penetration Testing Assessment
badge
Module 3: Information Gathering and Vulnerability Scanning
expand
expand
3.0. Introduction
start3.0.1 Why Should I Take This Module?
start3.0.2 What Will I Learn in This Module?
expand
3.1. Performing Passive Reconnaissance
start3.1.1 Overview
start3.1.2 Active Reconnaissance vs. Passive Reconnaissance
start3.1.3 Practice - Active Reconnaissance vs. Passive Reconnaissance
start3.1.4 Lab - Using OSINT Tools
start3.1.5 DNS Lookups
start3.1.6 Practice - DNS Lookups
start3.1.7 Identification of Technical and Administrative Contacts
start3.1.8 Practice - Identification of Technical and Administrative Contracts
start3.1.9 Lab - DNS Lookups
start3.1.10 Cloud vs. Self-Hosted Applications and Related Subdomains
start3.1.11 Social Media Scraping
start3.1.12 Lab - Employee Intelligence Gathering
start3.1.13 Cryptographic Flaws
start3.1.14 Lab - Finding Information from SSL Certificates
start3.1.15 Company Reputation and Security Posture
start3.1.16 Practice - File Metadata
start3.1.17 Practice - Web Archiving, Caching, and Public Code Repositories
start3.1.18 Lab - Finding Out About the Organization
start3.1.19 Lab - Advanced Searches
start3.1.20 Open-Source Intelligence (OSINT) Gathering
start3.1.21 Lab - Shodan Searches
expand
3.2. Performing Active Reconnaissance
start3.2.1 Overview
start3.2.2 Nmap Scan Types
start3.2.3 Practice - Nmap Scan Types
start3.2.4 Types of Enumeration
start3.2.5 Practice - Exploring Enumeration via Packet Crafting with Scapy
start3.2.6 Lab - Enumeration with Nmap
start3.2.7 Packet Inspection and Eavesdropping
start3.2.8 Practice - Packet Inspection and Eavesdropping
start3.2.9 Lab - Packet Crafting with Scapy
start3.2.10 Lab - Network Sniffing with Wireshark
expand
3.3. Understanding the Art of Performing Vulnerability Scans
start3.3.1 Overview
start3.3.2 How a Typical Automated Vulnerability Scanner Works
start3.3.3 Practice - How a Typical Automated Vulnerability Scanner Works
start3.3.4 Types of Vulnerability Scans
start3.3.5 Practice - Types of Vulnerability Scans
start3.3.6 Lab - Vulnerability Scanning with Kali Tools
start3.3.7 Challenges to Consider When Running a Vulnerability Scan
expand
3.4. Understanding How to Analyze Vulnerability Scan Results
start3.4.1 Overview
start3.4.2 Sources for Further Investigation of Vulnerabilities
start3.4.3 Lab - Investigate Vulnerability Information Sources
start3.4.4 How to Deal with a Vulnerability
expand
3.5. Summary
start3.5.1 What Did I Learn in this Module?
start3.5.2 Reflection Questions
start3.5.3 Quiz - Information Gathering and Vulnerability Scanning
badge
Module 4: Social Engineering Attacks
expand
expand
4.0. Introduction
start4.0.1 Why Should I Take This Module?
start4.0.2 What Will I Learn in This Module?
expand
4.1. Pretexting for an Approach and Impersonation
start4.1.1 Overview
start4.1.2 Practice - Pretexting and Impersonation
expand
4.2. Social Engineering Attacks
start4.2.1 Overview
start4.2.2 Email Phishing
start4.2.3 Vishing
start4.2.4 Short Message Service (SMS) Phishing
start4.2.5 Universal Serial Bus (USB) Drop Key
start4.2.6 Watering Hole Attacks
start4.2.7 Practice - Pivot Attack
start4.2.8 Practice - Social Engineering Attacks
expand
4.3. Physical Attacks
start4.3.1 Overview
start4.3.2 Tailgating
start4.3.3 Dumpster Diving
start4.3.4 Shoulder Surfing
start4.3.5 Badge Cloning
start4.3.6 Practice - Physical Attacks
expand
4.4. Social Engineering Tools
start4.4.1 Overview
start4.4.2 Social-Engineer Toolkit (SET)
start4.4.3 Browser Exploitation Framework (BeEF)
start4.4.4 Practice - Browser Exploitation Framework
start4.4.5 Call Spoofing Tools
start4.4.6 Practice - Call Spoofing Tools
start4.4.7 Lab - Explore the Social Engineer Toolkit (SET)
start4.4.8 Lab - Using the Browser Exploitation Framework (BeEF)
expand
4.5. Methods of Influence
start4.5.1 Overview
start4.5.2 Practice - Methods of Influence
expand
4.6. Summary
start4.6.1 What Did I Learn in this Module?
start4.6.2 Reflection Questions
start4.6.3 Quiz - Social Engineering Attacks
badge
Module 5: Exploiting Wired and Wireless Networks
expand
expand
5.0. Introduction
start5.0.1 Why Should I Take This Module?
start5.0.2 What Will I Learn in This Module?
expand
5.1. Exploiting Network-Based Vulnerabilities
start5.1.1 Overview
start5.1.2 Windows Name Resolution and SMB Attacks
start5.1.3 Practice - Windows Name Resolution and SMB Attacks
start5.1.4 Lab - Scanning for SMB Vulnerabilities with enum4linux
start5.1.5 DNS Cache Poisoning
start5.1.6 Practice - DNS Cache Poisoning
start5.1.7 SNMP Exploits
start5.1.8 SMTP Exploits
start5.1.9 Practice - SMTP Commands
start5.1.10 FTP Exploits
start5.1.11 Pass-the-Hash Attacks
start5.1.12 Kerberos and LDAP-Based Attacks
start5.1.13 Kerberoasting
start5.1.14 On-Path Attacks
start5.1.15 Practice - Kerberos, LDAP, and On-Path Attacks
start5.1.16 Lab - On-Path Attacks with Ettercap
start5.1.17 Route Manipulation Attacks
start5.1.18 DoS and DDoS Attacks
start5.1.19 Practice - DoS and DDoS Attacks
start5.1.20 Network Access Control (NAC) Bypass
start5.1.21 VLAN Hopping
start5.1.22 Practice - NAC Bypass and VLAN Hopping
start5.1.23 DHCP Starvation Attacks and Rogue DHCP Servers
start5.1.24 Practice - DHCP Starvation and Rogue DHCP Servers
expand
5.2. Exploiting Wireless Vulnerabilities
start5.2.1 Overview
start5.2.2 Rogue Access Points
start5.2.3 Evil Twin Attacks
start5.2.4 Disassociation (or Deauthentication) Attacks
start5.2.5 Preferred Network List Attacks
start5.2.6 Wireless Signal Jamming and Interference
start5.2.7 War Driving
start5.2.8 Initialization Vector (IV) Attacks and Unsecured Wireless Protocols
start5.2.9 KARMA Attacks
start5.2.10 Fragmentation Attacks
start5.2.11 Practice - IV, Unsecured Wireless, KARMA, and Fragmentation Attacks
start5.2.12 Credential Harvesting
start5.2.13 Bluejacking and Bluesnarfing
start5.2.14 Bluetooth Low Energy (BLE) Attacks
start5.2.15 Radio-Frequency Identification (RFID) Attacks
start5.2.16 Password Spraying
start5.2.17 Exploit Chaining
start5.2.18 Practice - Wireless Attacks
expand
5.3. Summary
start5.3.1 What Did I Learn in this Module?
start5.3.2 Reflection Questions
start5.3.3 Quiz - Exploiting Wired and Wireless Networks
badge
Module 6: Exploiting Application-Based Vulnerabilities
expand
expand
6.0. Introduction
start6.0.1 Why Should I Take This Module?
start6.0.2 What Will I Learn in This Module?
expand
6.1. Overview of Web Application-Based Attacks for Security Professionals and the OWASP Top 10
start6.1.1 Overview
start6.1.2 The HTTP Protocol
start6.1.3 Practice - The HTTP Protocol
start6.1.4 Web Sessions
start6.1.5 Practice - Web Sessions
start6.1.6 OWASP Top 10
start6.1.7 Lab - Website Vulnerability Scanning
start6.1.8 Lab - Using the GVM Vulnerability Scanner
expand
6.2. How to Build Your Own Web Application Lab
start6.2.1 Overview
expand
6.3. Understanding Business Logic Flaws
start6.3.1 Overview
start6.3.2 Practice - Business Logic Flaws
expand
6.4. Understanding Injection-Based Vulnerabilities
start6.4.1 Overview
start6.4.2 SQL Injection Vulnerabilities
start6.4.3 Practice - SQL Injection Attacks
start6.4.4 Command Injection Vulnerabilities
start6.4.5 Practice - Command Injection Vulnerabilities
start6.4.6 Lightweight Directory Access Protocol (LDAP) Injection Vulnerabilities
start6.4.7 Lab - Injection Attacks
expand
6.5. Exploiting Authentication-Based Vulnerabilities
start6.5.1 Overview
start6.5.2 Session Hijacking
start6.5.3 Practice - Session Hijacking
start6.5.4 Redirect Attacks
start6.5.5 Default Credentials
start6.5.6 Kerberos Vulnerabilities
start6.5.7 Practice - Kerberos Vulnerabilities
start6.5.8 Lab - Using Password Tools
expand
6.6. Exploiting Authorization-Based Vulnerabilities
start6.6.1 Overview
start6.6.2 Parameter Pollution
start6.6.3 Practice - Parameter Pollution
start6.6.4 Insecure Direct Object Reference Vulnerabilities
start6.6.5 Practice - Insecure Direct Object Reference Vulnerabilities
expand
6.7. Understanding Cross-Site Scripting (XSS) Vulnerabilities
start6.7.1 Overview
start6.7.2 Reflected XSS Attacks
start6.7.3 Practice - Reflected XSS Attacks
start6.7.4 Stored XSS Attacks
start6.7.5 Practice - Stored XSS Attacks
start6.7.6 XSS Evasion Techniques
start6.7.7 XSS Mitigations
start6.7.8 Lab - Cross Site Scripting
expand
6.8. Understanding Cross-Site Request Forgery (CSRF/XSRF) and Server-Side Request Forgery Attacks
start6.8.1 Overview
start6.8.2 Practice - CSRF/XSRF Attacks
expand
6.9. Understanding Clickjacking
start6.9.1 Overview
expand
6.10. Exploiting Security Misconfigurations
start6.10.1 Overview
start6.10.2 Exploiting Directory Traversal Vulnerabilities
start6.10.3 Practice - Directory Transversal
start6.10.4 Cookie Manipulation Attacks
expand
6.11. Exploiting File Inclusion Vulnerabilities
start6.11.1 Overview
start6.11.2 Local File Inclusion Vulnerabilities
start6.11.3 Remote File Inclusion Vulnerabilities
expand
6.12. Exploiting Insecure Code Practices
start6.12.1 Overview
start6.12.2 Comments in Source Code
start6.12.3 Lack of Error Handling and Overly Verbose Error Handling
start6.12.4 Practice - Insecure Code
start6.12.5 Hard-Coded Credentials
start6.12.6 Race Conditions
start6.12.7 Unprotected APIs
start6.12.8 Practice - Unprotected APIs
start6.12.9 Hidden Elements
start6.12.10 Lack of Code Signing
start6.12.11 Additional Web Application Hacking Tools
start6.12.12 Practice - Web Hacking Tools
start6.12.13 Lab - Use the OWASP Web Security Testing Guide
expand
6.13. Summary
start6.13.1 What Did I Learn in this Module?
start6.13.2 Reflection Questions
start6.13.3 Quiz - Performing Post-Exploitation Techniques
badge
Module 7: Cloud, Mobile, and IoT Security
expand
expand
7.0. Introduction
start7.0.1 Why Should I Take This Module?
start7.0.2 What Will I Learn in This Module?
expand
7.1. Researching Attack Vectors and Performing Attacks on Cloud Technologies
start7.1.1 Overview
start7.1.2 Practice - Types of Cloud Services
start7.1.3 Credential Harvesting
start7.1.4 Practice - Credential Harvesting
start7.1.5 Privilege Escalation
start7.1.6 Account Takeover
start7.1.7 Metadata Service Attacks
start7.1.8 Attacks Against Misconfigured Cloud Assets
start7.1.9 Resource Exhaustion and DoS Attacks
start7.1.10 Cloud Malware Injection Attacks
start7.1.11 Side-Channel Attacks
start7.1.12 Practice - Cloud Attack Types
start7.1.13 Tools and Software Development Kits (SDKs)
expand
7.2. Explaining Common Attacks and Vulnerabilities Against Specialized Systems
start7.2.1 Overview
start7.2.2 Attacking Mobile Devices
start7.2.3 Practice - Mobile Device Vulnerabilities
start7.2.4 Practice - Attacking Mobile Devices
start7.2.5 Attacking Internet of Things (IoT) Devices
start7.2.6 Analyzing IoT Protocols
start7.2.7 Practice - Analyzing IoT Protocols
start7.2.8 IoT Security Special Considerations
start7.2.9 Common IoT Vulnerabilities
start7.2.10 Practice - Common IoT Vulnerabilities
start7.2.11 Data Storage System Vulnerabilities
start7.2.12 Management Interface Vulnerabilities
start7.2.13 Practice - Management Interface Vulnerabilities
start7.2.14 Exploiting Virtual Machines
start7.2.15 Vulnerabilities Related to Containerized Workloads
start7.2.16 Practice - Vulnerabilities Related to Containerized Workloads
expand
7.3. Summary
start7.3.1 What Did I Learn in this Module?
start7.3.2 Reflection Questions
start7.3.3 Quiz - Cloud, Mobile, and IoT Security
badge
Module 8: Performing Post-Exploitation Techniques
expand
expand
8.0. Introduction
start8.0.1 Why Should I Take This Module?
start8.0.2 What Will I Learn in This Module?
expand
8.1. Creating a Foothold and Maintaining Persistence After Compromising a System
start8.1.1 Overview
start8.1.2 Reverse and Bind Shells
start8.1.3 Practice - Reverse and Bind Shells
start8.1.4 Command and Control (C2) Utilities
start8.1.5 Practice - Types of C2 Utilities
start8.1.6 Scheduled Jobs and Tasks
start8.1.7 Custom Daemons, Processes, and Additional Backdoors
start8.1.8 New Users
expand
8.2. Understanding How to Perform Lateral Movement, Detection Avoidance, and Enumeration
start8.2.1 Overview
start8.2.2 Post-Exploitation Scanning
start8.2.3 Legitimate Utilities and Living-off-the-Land
start8.2.4 Practice - Post Exploitation
start8.2.5 Post-Exploitation Privilege Escalation
start8.2.6 Practice - Post Exploitation Privilege Escalation
start8.2.7 How to Cover Your Tracks
start8.2.8 Practice - Steganography
expand
8.3. Summary
start8.3.1 What Did I Learn in this Module?
start8.3.2 Reflection Questions
start8.3.3 Quiz - Performing Post-Exploitation Techniques
badge
Module 9: Reporting and Communication
expand
expand
9.0. Introduction
start9.0.1 Why Should I Take This Module?
start9.0.2 What Will I Learn in This Module?
expand
9.1. Comparing and Contrasting Important Components of Written Reports
start9.1.1 Overview
start9.1.2 Report Contents
start9.1.3 Practice - Penetration Reporting
start9.1.4 Storage Time for Report and Secure Distribution
start9.1.5 Practice - Control and Distribution of Reports
start9.1.6 Note Taking
start9.1.7 Common Themes/Root Causes
start9.1.8 Practice - Common Themes/Root Causes
start9.1.9 Lab - Explore PenTest Reports
expand
9.2. Analyzing the Findings and Recommending the Appropriate Remediation Within a Report
start9.2.1 Overview
start9.2.2 Technical Controls
start9.2.3 Administrative Controls
start9.2.4 Operational Controls
start9.2.5 Physical Controls
start9.2.6 Practice - Recommended Controls
start9.2.7 Lab - Recommend Remediation Based on Findings
expand
9.3. Explaining the Importance of Communication During the Penetration Testing Process
start9.3.1 Overview
start9.3.2 Communication Triggers
start9.3.3 Practice - Communication Triggers
start9.3.4 Reasons for Communication
start9.3.5 Goal Reprioritization and Presentation of Findings
expand
9.4. Explaining Post-Report Delivery Activities
start9.4.1 Overview
start9.4.2 Post-Engagement Cleanup
start9.4.3 Additional Post-Report Delivery Activities
start9.4.4 Practice - Post Report Delivery
expand
9.5. Summary
start9.5.1 What Did I Learn in this Module?
start9.5.2 Reflection Questions
start9.5.3 Quiz - Reporting and Communication
badge
Module 10: Tools and Code Analysis
expand
expand
10.0. Introduction
start10.0.1 Why Should I Take This Module?
start10.0.2 What Will I Learn in This Module?
expand
10.1. Understanding the Basic Concepts of Scripting and Software Development
start10.1.1 Overview
start10.1.2 Logic Constructs
start10.1.3 Practice - Logic Constructs
start10.1.4 Data Structures
start10.1.5 Practice - Data Structures
start10.1.6 Libraries
start10.1.7 Procedures
start10.1.8 Functions
start10.1.9 Classes
start10.1.10 Analysis of Scripts and Code Samples for Use in Penetration Testing
start10.1.11 Practice - Scripting
start10.1.12 The Bash Shell
start10.1.13 Resources to Learn Python
start10.1.14 Resources to Learn Ruby
start10.1.15 Resources to Learn PowerShell
start10.1.16 Resources to Learn Perl
start10.1.17 Resources to Learn JavaScript
start10.1.18 Practice - Programming Languages
start10.1.19 Lab - Analyze Exploit Code
start10.1.20 Lab - Analyze Automation Code
expand
10.2. Understanding the Different Use Cases of Penetration Testing Tools and Analyzing Exploit Code
start10.2.1 Overview
start10.2.2 Penetration Testing - Focused Linux Distributions
start10.2.3 Common Tools for Reconnaissance and Enumeration
start10.2.4 Practice - Common Tools for Reconnaissance and Enumeration
start10.2.5 Common Tools for Vulnerability Scanning
start10.2.6 Practice - Common Tools for Vulnerability Scanning
start10.2.7 Common Tools for Credential Attacks
start10.2.8 Practice - Common Tools for Credential Attacks
start10.2.9 Common Tools for Persistence
start10.2.10 Practice - Common Tools for Persistence
start10.2.11 Common Tools for Evasion
start10.2.12 Practice - Common Tools for Evasion
start10.2.13 Exploitation Frameworks
start10.2.14 Practice - Exploitation Frameworks
start10.2.15 Common Decompilation, Disassembly, and Debugging Tools
start10.2.16 Practice - Common Decompilation, Disassembly, and Debugging Tools
start10.2.17 Common Tools for Forensics
start10.2.18 Practice - Common Tools for Forensics
start10.2.19 Common Tools for Software Assurance
start10.2.20 Practice - Common Tools for Software Assurance
start10.2.21 Wireless Tools
start10.2.22 Practice - Wireless Tools
start10.2.23 Steganography Tools
start10.2.24 Practice - Steganography Tools
start10.2.25 Cloud Tools
start10.2.26 Practice - Cloud Tools
expand
10.3. Summary
start10.3.1 What Did I Learn in this Module?
start10.3.2 Reflection Questions
start10.3.3 Quiz - Tools and Code Analysis
badge
Final Capstone Activity
expand
expand
Final Capstone Activity
startObjectives
startRequired Resources
badge
Ethical Hacker: Course Final Exam
expand
start
Course Final Exam
start
End of Course Survey

Resources


No data found
No Resources Found.

Welcome to the Ethical Hacker Course


i started ripping this course on August 30th of 2023 
so some things may be a bit different if you take the course
https://skillsforall.com/course/ethical-hacker?courseLang=en-US

Throughout the content of the course, you follow an engaging gamified narrative and get lots of practice with hands-on labs inspired by real-world scenarios. On this journey, you will be guided by your virtual mentor “Alex” at our fictional offensive security company, Protego Security Solutions. Within your role as a junior penetration tester at Protego, you will learn all the penetration testing phases of a client engagement. Pixel Paradise, a video game company, is the fictional company that will serve as your client during the course. 

Below are informational flyers for each fictional company.


Complete Your Employer: Protego Security Solutions

image.png

The digital landscape is evolving at an unprecedented rate and cyber threats lurk around every corner. Cybersecurity resilience in the modern world cannot be just an add on - it's a necessity.

Offensive security professionals like ethical hackers and penetration testers can help proactively discover unknown threats and address them before the cybercriminals do.

This course is designed to prepare you with an Ethical Hacker skillset and give you a solid understanding of offensive security. You will become proficient in the art of scoping, executing, and reporting on vulnerability assessments, while recommending mitigation strategies.

After completing this course, continue your cybersecurity career in offensive security (red team) as an ethical hacker or penetration tester. Or use this course to strengthen your defensive security (blue team) knowledge. By understanding the mindset of threat actors, you will be able to more effectively implement security controls and monitor, analyze, and respond to current security threats.

Module Title

Module Objective

Introduction to Ethical Hacking and Penetration Testing

Explain the importance of methodological ethical hacking and penetration testing.

Planning and Scoping a Penetration Testing Assessment   

Create penetration testing preliminary documents.

Information Gathering and Vulnerability Scanning

Perform information gathering and vulnerability scanning activities.

Social Engineering Attacks

Explain how social engineering attacks succeed.

Exploiting Wired and Wireless Networks   

Explain how to exploit wired and wireless network vulnerabilities.

Exploiting Application-Based Vulnerabilities

Explain how to exploit application-based vulnerabilities.

Cloud, Mobile, and IoT Security

Explain how to exploit cloud, mobile, and IoT security vulnerabilities.

Performing Post-Exploitation Techniques

Explain how to perform post-exploitation activities.

Reporting and Communication

Create a penetration testing report.

Tools and Code Analysis   

Classify pentesting tools by use case.
This is a multiple choice question. Once you have selected an option, select the submit button below

In this course, you will explore and apply various tools and techniques within a controlled, "sandboxed" Ethical Hacker Kali Linux virtual machine environment to simulate cyber-attacks and discover, assess, and exploit built-in vulnerabilities. It is crucial to acknowledge that the hands-on labs are meant solely for educational purposes, aiming to equip you with the skills to identify and safeguard against real-world threats. The vulnerabilities and weaknesses demonstrated here must be used responsibly and ethically, exclusively within this designated "sandboxed" environment.

Engaging with these tools, techniques, or resources beyond the provided "sandboxed" virtual environment or outside your authorized scope may lead to violations of local laws and regulations. We strongly emphasize the importance of seeking clarification from your administrator or instructor before attempting any experimentation.

It is imperative to comprehend that unauthorized access to data, computer systems, and networks is illegal in numerous jurisdictions, regardless of intentions or motivations. We emphasize the significance of using your newfound knowledge responsibly and ensuring compliance with all applicable laws and regulations.

By accepting this "Ethical Hacker Statement," you acknowledge the critical importance of utilizing the skills acquired in this course for ethical and lawful purposes only, and you commit to upholding the principles of responsible cybersecurity practices. Remember, with great power comes great responsibility.

Your Acknowledgment

Do you acknowledge and accept your responsibility, as the user of this course, to be cognizant of and compliant with local laws, regulations, and ethical use?


Yes, I accept my responsibility as specified in the Ethical Hacking Statement.

No, I do not accept my responsibility as specified in the Ethical Hacking Statement.

1.0.1-1.0.2 Why Should I Take This Module and what will i learn?


Protego Security Solutions Task

Welcome to Protego! My name is Alex. I will be your mentor for your first 90 days here. Our recruiter was very impressed with your enthusiasm and desire to enter the cybersecurity profession. 

We’ll be working together to get you ready for your role as an entry-level penetration tester. We’ll be talking about ways that you can prepare for participating in our customer engagements and I have a number of activities for you to complete that will quickly enhance your skills.

We will talk about some important big ideas in penetration testing and then get your practice lab environment up and running. 

I know you will enjoy working at Protego, and I look forward to working with you as you grow in your career with us.

Before we jump into how to perform penetration testing, you first need to understand some core concepts about the “art of hacking” that will help you understand the other concepts discussed throughout this course. For example, you need to understand the difference between ethical hacking and unethical hacking. The tools and techniques used in this field change rapidly, so understanding the most current threats and attacker motivations is also important. Some consider penetration testing an art; however, this art needs to start out with a methodology if it is to be effective. Furthermore, you need to spend some time understanding the different types of testing and the industry methods used. Finally, this is a hands-on concept, and you need to know how to get your hands dirty by properly building a lab environment for testing.



Module Title: Introduction to Ethical Hacking and Penetration Testing

Module Objective: Explain the importance of methodological ethical hacking and penetration testing.


Topic Title Topic Objective
Understanding Ethical Hacking and Penetration Testing Explain the importance of ethical hacking and penetration testing.
Exploring Penetration Testing Methodologies Explain different types of penetration testing methodologies and frameworks.
Building Your Own Lab Configure a virtual machine for your penetration testing learning experience.

1.1.1 Overview



Protego Security Solutions

Alex here! We will be meeting periodically over the next few weeks so you can get oriented to working at Protego and also build your skills and knowledge as we increase your involvement in our customer engagements. 

At the very heart of what we do is our purpose. You need to understand why we do what we do and who our enemies are. Once you have a strong foundation here, we can move on to understanding how we accomplish our purpose. 

As a refresher, the term ethical hacker describes a person who acts as an attacker and evaluates the security posture of a computer network for the purpose of minimizing risk. The NIST Computer Security Resource Center (CSRC) defines a hacker as an “unauthorized user who attempts to or gains access to an information system.” Now, we all know that the term hacker has been used in many different ways and has many different definitions. Most people in a computer technology field would consider themselves hackers based on the simple fact that they like to tinker. This is obviously not a malicious thing. So, the key factor here in defining ethical versus nonethical hacking is that the latter involves malicious intent. The permission to attack or permission to test is crucial and what will keep you out of trouble! This permission to attack is often referred to as “the scope” of the test (what you are allowed and not allowed to test). More on this later in this module.

A security researcher looking for vulnerabilities in products, applications, or web services is considered an ethical hacker if he or she responsibly discloses those vulnerabilities to the vendors or owners of the targeted research. However, the same type of “research” performed by someone who then uses the same vulnerability to gain unauthorized access to a target network/system would be considered a nonethical hacker. We could even go so far as to say that someone who finds a vulnerability and discloses it publicly without working with a vendor is considered a nonethical hacker – because this could lead to the compromise of networks/systems by others who use this information in a malicious way.

The truth is that as an ethical hacker, you use the same tools to find vulnerabilities and exploit targets as do nonethical hackers. However, as an ethical hacker, you would typically report your findings to the vendor or customer you are helping to make the network more secure. You would also try to avoid performing any tests or exploits that might be destructive in nature.

An ethical hacker’s goal is to analyze the security posture of a network’s or system’s infrastructure in an effort to identify and possibly exploit any security weaknesses found and then determine if a compromise is possible. This process is called security penetration testing or ethical hacking.



TIP Hacking is NOT a Crime ( hackingisnotacrime.org ) is a nonprofit organization that attempts to raise awareness about the pejorative use of the term hacker. Historically, hackers have been portrayed as evil or illegal. Luckily, a lot of people already know that hackers are curious individuals who want to understand how things work and how to make them more secure.


So, why do we need penetration testing? Well, first of all, as someone who is responsible for securing and defending a network/system, you want to find any possible paths of compromise before the bad guys do. For years we have developed and implemented many different defensive techniques (for instance, antivirus, firewalls, intrusion prevention systems [IPSs], anti-malware). We have deployed defense-in-depth as a method to secure and defend our networks. But how do we know if those defenses really work and whether they are enough to keep out the bad guys? How valuable is the data that we are protecting, and are we protecting the right things? These are some of the questions that should be answered by a penetration test. If you build a fence around your yard with the intent of keeping your dog from getting out, maybe it only needs to be 4 feet tall. However, if your concern is not the dog getting out but an intruder getting in, then you need a different fence – one that would need to be much taller than 4 feet. Depending on what you are protecting, you might also want razor wire on the top of the fence to deter the bad guys even more. When it comes to information security, we need to do the same type of assessments on our networks and systems. We need to determine what it is we are protecting and whether our defenses can hold up to the threats that are imposed on them. This is where penetration testing comes in. Simply implementing a firewall, an IPS, anti-malware, a VPN, a web application firewall (WAF), and other modern security defenses isn’t enough. You also need to test their validity. And you need to do this on a regular basis. As you know, networks and systems change constantly. This means the attack surface can change as well, and when it does, you need to consider reevaluating the security posture by way of a penetration test.

1.1.3 Lab - Researching PenTesting Careers


Protego Security Solutions

I think it is important for you to understand the employment landscape and the different roles and responsibilities that cybersecurity professions include. A good general reference to explore for descriptions of different job roles is The National Initiative for Cybersecurity Careers and Studies (NICCS) Cyber Career Pathways Tool. It offers a visual way to discover and compare different job roles in our profession.

In this activity, you discover and compare ethical hacking jobs that are listed on various job boards. Don’t worry, we are not trying to get rid of you! We just want you to understand where you fit in to the big picture in our profession. I think that you will find that we are treating you very well, and rest assured that you have a lot of room to grow with us.

In this lab, you will complete the following objectives:

  • Conduct a Penetration Tester Job Search
  • Analyze Penetration Tester Job Requirements
  • Discover Resources to Further Your Career


 email naruzkurai@gmail.com to link the html hosting sheet
This is a multiple choice question. Once you have selected an option, select the submit button below

the following three internet job boards allow filtering job postings by seniority or experience level.


glassdoor.com
indeed.com
linkedin.com jobs

At the time of this writing, monster.com did not have a filter for level of expertise or seniority in its job search results. but allows searching of weather or not you want to be at home part time etc.

Screenshot_20230830-145457_Chrome.jpg

1.1.4 Threat Actors

Before you can understand how an ethical hacker or penetration tester can mimic a threat actor (or malicious attacker), you need to understand the different types of threat actors. The following are the most common types of malicious attackers we see today. Select each for more information.

Organized Crime
Several years ago, the cybercrime industry took over the number-one spot, previously held by the drug trade, for the most profitable illegal industry. As you can imagine, it has attracted a new type of cybercriminal. Just as it did back in the days of Prohibition, organized crime goes where the money is. Organized crime consists of very well-funded and motivated groups that will typically use any and all of the latest attack techniques. Whether that is ransomware or data theft, if it can be monetized, organized crime will use it.
Hacktivists
This type of threat actor is not motivated by money. Hacktivists are looking to make a point or to further their beliefs, using cybercrime as their method of attack. These types of attacks are often carried out by stealing sensitive data and then revealing it to the public for the purpose of embarrassing or financially affecting a target.
State-Sponsored Attackers
Cyber war and cyber espionage are two terms that fit into this category. Many governments around the world today use cyber attacks to steal information from their opponents and cause disruption. Many believe that the next Pearl Harbor will occur in cyberspace. That’s one of the reasons the United States declared cyberspace to be one of the operational domains that U.S. forces would be trained to defend.
Insider Threats
An insider threat is a threat that comes from inside an organization. The motivations of these types of actors are normally different from those of many of the other common threat actors. Insider threats are often normal employees who are tricked into divulging sensitive information or mistakenly clicking on links that allow attackers to gain access to their computers. However, they could also be malicious insiders who are possibly motivated by revenge or money.