Skip to main content

overview

arn the art of offensive security to uncover cyber threats and vulnerabilities before the cybercriminals do.
SCHEDULE
Aug 27, 2023 - Aug 30, 2024
Languages
English
Instructor
Victor Gevers

Duration
70 Hours
Level
Intermediate
Lab
34 Labs
Delivery Type
Self-Paced

Instructor

  • Victor Gevers
    Victor Gevers
The digital landscape is evolving at an unprecedented rate and cyber threats lurk around every corner. Cybersecurity resilience in the modern world cannot be just an add on - it's a necessity. Offensive security professionals like ethical hackers and penetration testers can help proactively discover unknown threats and address them before the cybercriminals do.

This course is designed to prepare you with an Ethical Hacker skillset and give you a solid understanding of offensive security. You will become proficient in the art of scoping, executing, and reporting on vulnerability assessments, while recommending mitigation strategies. Follow an engaging gamified narrative throughout the course and get lots of practice with hands-on labs inspired by real-world scenarios.

After completing this course, continue your cybersecurity career in offensive security as an ethical hacker or penetration tester. Or use this course to strengthen your defensive security knowledge. By understanding the mindset of threat actors, you will be able to more effectively implement security controls and monitor, analyze, and respond to current security threats.

Prerequisites:
Junior Cybersecurity Analyst Career Path, or equivalent entry-level cybersecurity knowledge
Basic programming knowledge
what you will learn.
badge
Course Introduction
expand
expand
Course Introduction
startWelcome to the Ethical Hacker Course
startThe Fictional Companies in the Ethical Hacker Course
startWhat Will I Learn in This Course?
startEthical Hacking Statement
badge
Module 1: Introduction to Ethical Hacking and Penetration Testing
expand
expand
1.0. Introduction
start1.0.1 Why Should I Take This Module?
start1.0.2 What Will I Learn in This Module?
expand
1.1. Understanding Ethical Hacking and Penetration Testing
start1.1.1 Overview
start1.1.2 Why Do We Need to Do Penetration Testing?
start1.1.3 Lab - Researching PenTesting Careers
start1.1.4 Threat Actors
expand
1.2. Exploring Penetration Testing Methodologies
start1.2.1 Overview
start1.2.2 Why Do We Need to Follow a Methodology for Penetration Testing?
start1.2.3 Environmental Considerations
start1.2.4 Practice - Types of Penetration Tests
start1.2.5 Surveying Different Standards and Methodologies
start1.2.6 Lab - Compare Pentesting Methodologies
expand
1.3. Building Your Own Lab
start1.3.1 Overview
start1.3.2 Requirements and Guidelines for Penetration Testing Labs
start1.3.3 What Tools Should You Use in Your Lab?
start1.3.4 Practice - Requirements and Guidelines for Penetration Testing Labs
start1.3.5 What If You Break Something?
start1.3.6 Lab - Deploy a Pre-Built Kali Linux Virtual Machine (VM)
start1.3.7 Lab - Investigate Kali Linux
expand
1.4. Summary
start1.4.1 What Did I Learn in this Module?
start1.4.2 Reflection Questions
start1.4.3 Quiz - Introduction to Ethical Hacking and Penetration Testing
badge
Module 2: Planning and Scoping a Penetration Testing Assessment
expand
expand
2.0. Introduction
start2.0.1 Why Should I Take This Module?
start2.0.2 What Will I Learn in This Module?
expand
2.1. Comparing and Contrasting Governance, Risk, and Compliance Concepts
start2.1.1 Overview
start2.1.2 Regulatory Compliance Considerations
start2.1.3 Local Restrictions
start2.1.4 Practice - Regulations
start2.1.5 Legal Concepts
start2.1.6 Contracts
start2.1.7 Disclaimers
start2.1.8 Practice - Legal Concepts
start2.1.9 Lab - Compliance Requirements and Local Restrictions
expand
2.2. Explaining the Importance of Scoping and Organizational or Customer Requirements
start2.2.1 Overview
start2.2.2 Rules of Engagement
start2.2.3 Practice - Rules of Engagement
start2.2.4 Target List and In-Scope Assets
start2.2.5 Practice - Target List and In-Scope Assets
start2.2.6 Validating the Scope of Engagement
start2.2.7 Strategy: Unknown vs. Known Environment Testing
start2.2.8 Practice - Strategy: Unknown vs. Known Environment Testing
start2.2.9 Lab - Pre-Engagement Scope and Planning
start2.2.10 Lab - Create a Pentesting Agreement
expand
2.3. Demonstrating an Ethical Hacking Mindset by Maintaining Professionalism and Integrity
start2.3.1 Overview
start2.3.2 Practice - Demonstrate an Ethical Hacking Mindset
start2.3.3 Lab - Personal Code of Conduct
expand
2.4. Summary
start2.4.1 What Did I Learn in this Module?
start2.4.2 Reflection Questions
start2.4.3 Quiz - Planning and Scoping a Penetration Testing Assessment
badge
Module 3: Information Gathering and Vulnerability Scanning
expand
expand
3.0. Introduction
start3.0.1 Why Should I Take This Module?
start3.0.2 What Will I Learn in This Module?
expand
3.1. Performing Passive Reconnaissance
start3.1.1 Overview
start3.1.2 Active Reconnaissance vs. Passive Reconnaissance
start3.1.3 Practice - Active Reconnaissance vs. Passive Reconnaissance
start3.1.4 Lab - Using OSINT Tools
start3.1.5 DNS Lookups
start3.1.6 Practice - DNS Lookups
start3.1.7 Identification of Technical and Administrative Contacts
start3.1.8 Practice - Identification of Technical and Administrative Contracts
start3.1.9 Lab - DNS Lookups
start3.1.10 Cloud vs. Self-Hosted Applications and Related Subdomains
start3.1.11 Social Media Scraping
start3.1.12 Lab - Employee Intelligence Gathering
start3.1.13 Cryptographic Flaws
start3.1.14 Lab - Finding Information from SSL Certificates
start3.1.15 Company Reputation and Security Posture
start3.1.16 Practice - File Metadata
start3.1.17 Practice - Web Archiving, Caching, and Public Code Repositories
start3.1.18 Lab - Finding Out About the Organization
start3.1.19 Lab - Advanced Searches
start3.1.20 Open-Source Intelligence (OSINT) Gathering
start3.1.21 Lab - Shodan Searches
expand
3.2. Performing Active Reconnaissance
start3.2.1 Overview
start3.2.2 Nmap Scan Types
start3.2.3 Practice - Nmap Scan Types
start3.2.4 Types of Enumeration
start3.2.5 Practice - Exploring Enumeration via Packet Crafting with Scapy
start3.2.6 Lab - Enumeration with Nmap
start3.2.7 Packet Inspection and Eavesdropping
start3.2.8 Practice - Packet Inspection and Eavesdropping
start3.2.9 Lab - Packet Crafting with Scapy
start3.2.10 Lab - Network Sniffing with Wireshark
expand
3.3. Understanding the Art of Performing Vulnerability Scans
start3.3.1 Overview
start3.3.2 How a Typical Automated Vulnerability Scanner Works
start3.3.3 Practice - How a Typical Automated Vulnerability Scanner Works
start3.3.4 Types of Vulnerability Scans
start3.3.5 Practice - Types of Vulnerability Scans
start3.3.6 Lab - Vulnerability Scanning with Kali Tools
start3.3.7 Challenges to Consider When Running a Vulnerability Scan
expand
3.4. Understanding How to Analyze Vulnerability Scan Results
start3.4.1 Overview
start3.4.2 Sources for Further Investigation of Vulnerabilities
start3.4.3 Lab - Investigate Vulnerability Information Sources
start3.4.4 How to Deal with a Vulnerability
expand
3.5. Summary
start3.5.1 What Did I Learn in this Module?
start3.5.2 Reflection Questions
start3.5.3 Quiz - Information Gathering and Vulnerability Scanning
badge
Module 4: Social Engineering Attacks
expand
expand
4.0. Introduction
start4.0.1 Why Should I Take This Module?
start4.0.2 What Will I Learn in This Module?
expand
4.1. Pretexting for an Approach and Impersonation
start4.1.1 Overview
start4.1.2 Practice - Pretexting and Impersonation
expand
4.2. Social Engineering Attacks
start4.2.1 Overview
start4.2.2 Email Phishing
start4.2.3 Vishing
start4.2.4 Short Message Service (SMS) Phishing
start4.2.5 Universal Serial Bus (USB) Drop Key
start4.2.6 Watering Hole Attacks
start4.2.7 Practice - Pivot Attack
start4.2.8 Practice - Social Engineering Attacks
expand
4.3. Physical Attacks
start4.3.1 Overview
start4.3.2 Tailgating
start4.3.3 Dumpster Diving
start4.3.4 Shoulder Surfing
start4.3.5 Badge Cloning
start4.3.6 Practice - Physical Attacks
expand
4.4. Social Engineering Tools
start4.4.1 Overview
start4.4.2 Social-Engineer Toolkit (SET)
start4.4.3 Browser Exploitation Framework (BeEF)
start4.4.4 Practice - Browser Exploitation Framework
start4.4.5 Call Spoofing Tools
start4.4.6 Practice - Call Spoofing Tools
start4.4.7 Lab - Explore the Social Engineer Toolkit (SET)
start4.4.8 Lab - Using the Browser Exploitation Framework (BeEF)
expand
4.5. Methods of Influence
start4.5.1 Overview
start4.5.2 Practice - Methods of Influence
expand
4.6. Summary
start4.6.1 What Did I Learn in this Module?
start4.6.2 Reflection Questions
start4.6.3 Quiz - Social Engineering Attacks
badge
Module 5: Exploiting Wired and Wireless Networks
expand
expand
5.0. Introduction
start5.0.1 Why Should I Take This Module?
start5.0.2 What Will I Learn in This Module?
expand
5.1. Exploiting Network-Based Vulnerabilities
start5.1.1 Overview
start5.1.2 Windows Name Resolution and SMB Attacks
start5.1.3 Practice - Windows Name Resolution and SMB Attacks
start5.1.4 Lab - Scanning for SMB Vulnerabilities with enum4linux
start5.1.5 DNS Cache Poisoning
start5.1.6 Practice - DNS Cache Poisoning
start5.1.7 SNMP Exploits
start5.1.8 SMTP Exploits
start5.1.9 Practice - SMTP Commands
start5.1.10 FTP Exploits
start5.1.11 Pass-the-Hash Attacks
start5.1.12 Kerberos and LDAP-Based Attacks
start5.1.13 Kerberoasting
start5.1.14 On-Path Attacks
start5.1.15 Practice - Kerberos, LDAP, and On-Path Attacks
start5.1.16 Lab - On-Path Attacks with Ettercap
start5.1.17 Route Manipulation Attacks
start5.1.18 DoS and DDoS Attacks
start5.1.19 Practice - DoS and DDoS Attacks
start5.1.20 Network Access Control (NAC) Bypass
start5.1.21 VLAN Hopping
start5.1.22 Practice - NAC Bypass and VLAN Hopping
start5.1.23 DHCP Starvation Attacks and Rogue DHCP Servers
start5.1.24 Practice - DHCP Starvation and Rogue DHCP Servers
expand
5.2. Exploiting Wireless Vulnerabilities
start5.2.1 Overview
start5.2.2 Rogue Access Points
start5.2.3 Evil Twin Attacks
start5.2.4 Disassociation (or Deauthentication) Attacks
start5.2.5 Preferred Network List Attacks
start5.2.6 Wireless Signal Jamming and Interference
start5.2.7 War Driving
start5.2.8 Initialization Vector (IV) Attacks and Unsecured Wireless Protocols
start5.2.9 KARMA Attacks
start5.2.10 Fragmentation Attacks
start5.2.11 Practice - IV, Unsecured Wireless, KARMA, and Fragmentation Attacks
start5.2.12 Credential Harvesting
start5.2.13 Bluejacking and Bluesnarfing
start5.2.14 Bluetooth Low Energy (BLE) Attacks
start5.2.15 Radio-Frequency Identification (RFID) Attacks
start5.2.16 Password Spraying
start5.2.17 Exploit Chaining
start5.2.18 Practice - Wireless Attacks
expand
5.3. Summary
start5.3.1 What Did I Learn in this Module?
start5.3.2 Reflection Questions
start5.3.3 Quiz - Exploiting Wired and Wireless Networks
badge
Module 6: Exploiting Application-Based Vulnerabilities
expand
expand
6.0. Introduction
start6.0.1 Why Should I Take This Module?
start6.0.2 What Will I Learn in This Module?
expand
6.1. Overview of Web Application-Based Attacks for Security Professionals and the OWASP Top 10
start6.1.1 Overview
start6.1.2 The HTTP Protocol
start6.1.3 Practice - The HTTP Protocol
start6.1.4 Web Sessions
start6.1.5 Practice - Web Sessions
start6.1.6 OWASP Top 10
start6.1.7 Lab - Website Vulnerability Scanning
start6.1.8 Lab - Using the GVM Vulnerability Scanner
expand
6.2. How to Build Your Own Web Application Lab
start6.2.1 Overview
expand
6.3. Understanding Business Logic Flaws
start6.3.1 Overview
start6.3.2 Practice - Business Logic Flaws
expand
6.4. Understanding Injection-Based Vulnerabilities
start6.4.1 Overview
start6.4.2 SQL Injection Vulnerabilities
start6.4.3 Practice - SQL Injection Attacks
start6.4.4 Command Injection Vulnerabilities
start6.4.5 Practice - Command Injection Vulnerabilities
start6.4.6 Lightweight Directory Access Protocol (LDAP) Injection Vulnerabilities
start6.4.7 Lab - Injection Attacks
expand
6.5. Exploiting Authentication-Based Vulnerabilities
start6.5.1 Overview
start6.5.2 Session Hijacking
start6.5.3 Practice - Session Hijacking
start6.5.4 Redirect Attacks
start6.5.5 Default Credentials
start6.5.6 Kerberos Vulnerabilities
start6.5.7 Practice - Kerberos Vulnerabilities
start6.5.8 Lab - Using Password Tools
expand
6.6. Exploiting Authorization-Based Vulnerabilities
start6.6.1 Overview
start6.6.2 Parameter Pollution
start6.6.3 Practice - Parameter Pollution
start6.6.4 Insecure Direct Object Reference Vulnerabilities
start6.6.5 Practice - Insecure Direct Object Reference Vulnerabilities
expand
6.7. Understanding Cross-Site Scripting (XSS) Vulnerabilities
start6.7.1 Overview
start6.7.2 Reflected XSS Attacks
start6.7.3 Practice - Reflected XSS Attacks
start6.7.4 Stored XSS Attacks
start6.7.5 Practice - Stored XSS Attacks
start6.7.6 XSS Evasion Techniques
start6.7.7 XSS Mitigations
start6.7.8 Lab - Cross Site Scripting
expand
6.8. Understanding Cross-Site Request Forgery (CSRF/XSRF) and Server-Side Request Forgery Attacks
start6.8.1 Overview
start6.8.2 Practice - CSRF/XSRF Attacks
expand
6.9. Understanding Clickjacking
start6.9.1 Overview
expand
6.10. Exploiting Security Misconfigurations
start6.10.1 Overview
start6.10.2 Exploiting Directory Traversal Vulnerabilities
start6.10.3 Practice - Directory Transversal
start6.10.4 Cookie Manipulation Attacks
expand
6.11. Exploiting File Inclusion Vulnerabilities
start6.11.1 Overview
start6.11.2 Local File Inclusion Vulnerabilities
start6.11.3 Remote File Inclusion Vulnerabilities
expand
6.12. Exploiting Insecure Code Practices
start6.12.1 Overview
start6.12.2 Comments in Source Code
start6.12.3 Lack of Error Handling and Overly Verbose Error Handling
start6.12.4 Practice - Insecure Code
start6.12.5 Hard-Coded Credentials
start6.12.6 Race Conditions
start6.12.7 Unprotected APIs
start6.12.8 Practice - Unprotected APIs
start6.12.9 Hidden Elements
start6.12.10 Lack of Code Signing
start6.12.11 Additional Web Application Hacking Tools
start6.12.12 Practice - Web Hacking Tools
start6.12.13 Lab - Use the OWASP Web Security Testing Guide
expand
6.13. Summary
start6.13.1 What Did I Learn in this Module?
start6.13.2 Reflection Questions
start6.13.3 Quiz - Performing Post-Exploitation Techniques
badge
Module 7: Cloud, Mobile, and IoT Security
expand
expand
7.0. Introduction
start7.0.1 Why Should I Take This Module?
start7.0.2 What Will I Learn in This Module?
expand
7.1. Researching Attack Vectors and Performing Attacks on Cloud Technologies
start7.1.1 Overview
start7.1.2 Practice - Types of Cloud Services
start7.1.3 Credential Harvesting
start7.1.4 Practice - Credential Harvesting
start7.1.5 Privilege Escalation
start7.1.6 Account Takeover
start7.1.7 Metadata Service Attacks
start7.1.8 Attacks Against Misconfigured Cloud Assets
start7.1.9 Resource Exhaustion and DoS Attacks
start7.1.10 Cloud Malware Injection Attacks
start7.1.11 Side-Channel Attacks
start7.1.12 Practice - Cloud Attack Types
start7.1.13 Tools and Software Development Kits (SDKs)
expand
7.2. Explaining Common Attacks and Vulnerabilities Against Specialized Systems
start7.2.1 Overview
start7.2.2 Attacking Mobile Devices
start7.2.3 Practice - Mobile Device Vulnerabilities
start7.2.4 Practice - Attacking Mobile Devices
start7.2.5 Attacking Internet of Things (IoT) Devices
start7.2.6 Analyzing IoT Protocols
start7.2.7 Practice - Analyzing IoT Protocols
start7.2.8 IoT Security Special Considerations
start7.2.9 Common IoT Vulnerabilities
start7.2.10 Practice - Common IoT Vulnerabilities
start7.2.11 Data Storage System Vulnerabilities
start7.2.12 Management Interface Vulnerabilities
start7.2.13 Practice - Management Interface Vulnerabilities
start7.2.14 Exploiting Virtual Machines
start7.2.15 Vulnerabilities Related to Containerized Workloads
start7.2.16 Practice - Vulnerabilities Related to Containerized Workloads
expand
7.3. Summary
start7.3.1 What Did I Learn in this Module?
start7.3.2 Reflection Questions
start7.3.3 Quiz - Cloud, Mobile, and IoT Security
badge
Module 8: Performing Post-Exploitation Techniques
expand
expand
8.0. Introduction
start8.0.1 Why Should I Take This Module?
start8.0.2 What Will I Learn in This Module?
expand
8.1. Creating a Foothold and Maintaining Persistence After Compromising a System
start8.1.1 Overview
start8.1.2 Reverse and Bind Shells
start8.1.3 Practice - Reverse and Bind Shells
start8.1.4 Command and Control (C2) Utilities
start8.1.5 Practice - Types of C2 Utilities
start8.1.6 Scheduled Jobs and Tasks
start8.1.7 Custom Daemons, Processes, and Additional Backdoors
start8.1.8 New Users
expand
8.2. Understanding How to Perform Lateral Movement, Detection Avoidance, and Enumeration
start8.2.1 Overview
start8.2.2 Post-Exploitation Scanning
start8.2.3 Legitimate Utilities and Living-off-the-Land
start8.2.4 Practice - Post Exploitation
start8.2.5 Post-Exploitation Privilege Escalation
start8.2.6 Practice - Post Exploitation Privilege Escalation
start8.2.7 How to Cover Your Tracks
start8.2.8 Practice - Steganography
expand
8.3. Summary
start8.3.1 What Did I Learn in this Module?
start8.3.2 Reflection Questions
start8.3.3 Quiz - Performing Post-Exploitation Techniques
badge
Module 9: Reporting and Communication
expand
expand
9.0. Introduction
start9.0.1 Why Should I Take This Module?
start9.0.2 What Will I Learn in This Module?
expand
9.1. Comparing and Contrasting Important Components of Written Reports
start9.1.1 Overview
start9.1.2 Report Contents
start9.1.3 Practice - Penetration Reporting
start9.1.4 Storage Time for Report and Secure Distribution
start9.1.5 Practice - Control and Distribution of Reports
start9.1.6 Note Taking
start9.1.7 Common Themes/Root Causes
start9.1.8 Practice - Common Themes/Root Causes
start9.1.9 Lab - Explore PenTest Reports
expand
9.2. Analyzing the Findings and Recommending the Appropriate Remediation Within a Report
start9.2.1 Overview
start9.2.2 Technical Controls
start9.2.3 Administrative Controls
start9.2.4 Operational Controls
start9.2.5 Physical Controls
start9.2.6 Practice - Recommended Controls
start9.2.7 Lab - Recommend Remediation Based on Findings
expand
9.3. Explaining the Importance of Communication During the Penetration Testing Process
start9.3.1 Overview
start9.3.2 Communication Triggers
start9.3.3 Practice - Communication Triggers
start9.3.4 Reasons for Communication
start9.3.5 Goal Reprioritization and Presentation of Findings
expand
9.4. Explaining Post-Report Delivery Activities
start9.4.1 Overview
start9.4.2 Post-Engagement Cleanup
start9.4.3 Additional Post-Report Delivery Activities
start9.4.4 Practice - Post Report Delivery
expand
9.5. Summary
start9.5.1 What Did I Learn in this Module?
start9.5.2 Reflection Questions
start9.5.3 Quiz - Reporting and Communication
badge
Module 10: Tools and Code Analysis
expand
expand
10.0. Introduction
start10.0.1 Why Should I Take This Module?
start10.0.2 What Will I Learn in This Module?
expand
10.1. Understanding the Basic Concepts of Scripting and Software Development
start10.1.1 Overview
start10.1.2 Logic Constructs
start10.1.3 Practice - Logic Constructs
start10.1.4 Data Structures
start10.1.5 Practice - Data Structures
start10.1.6 Libraries
start10.1.7 Procedures
start10.1.8 Functions
start10.1.9 Classes
start10.1.10 Analysis of Scripts and Code Samples for Use in Penetration Testing
start10.1.11 Practice - Scripting
start10.1.12 The Bash Shell
start10.1.13 Resources to Learn Python
start10.1.14 Resources to Learn Ruby
start10.1.15 Resources to Learn PowerShell
start10.1.16 Resources to Learn Perl
start10.1.17 Resources to Learn JavaScript
start10.1.18 Practice - Programming Languages
start10.1.19 Lab - Analyze Exploit Code
start10.1.20 Lab - Analyze Automation Code
expand
10.2. Understanding the Different Use Cases of Penetration Testing Tools and Analyzing Exploit Code
start10.2.1 Overview
start10.2.2 Penetration Testing - Focused Linux Distributions
start10.2.3 Common Tools for Reconnaissance and Enumeration
start10.2.4 Practice - Common Tools for Reconnaissance and Enumeration
start10.2.5 Common Tools for Vulnerability Scanning
start10.2.6 Practice - Common Tools for Vulnerability Scanning
start10.2.7 Common Tools for Credential Attacks
start10.2.8 Practice - Common Tools for Credential Attacks
start10.2.9 Common Tools for Persistence
start10.2.10 Practice - Common Tools for Persistence
start10.2.11 Common Tools for Evasion
start10.2.12 Practice - Common Tools for Evasion
start10.2.13 Exploitation Frameworks
start10.2.14 Practice - Exploitation Frameworks
start10.2.15 Common Decompilation, Disassembly, and Debugging Tools
start10.2.16 Practice - Common Decompilation, Disassembly, and Debugging Tools
start10.2.17 Common Tools for Forensics
start10.2.18 Practice - Common Tools for Forensics
start10.2.19 Common Tools for Software Assurance
start10.2.20 Practice - Common Tools for Software Assurance
start10.2.21 Wireless Tools
start10.2.22 Practice - Wireless Tools
start10.2.23 Steganography Tools
start10.2.24 Practice - Steganography Tools
start10.2.25 Cloud Tools
start10.2.26 Practice - Cloud Tools
expand
10.3. Summary
start10.3.1 What Did I Learn in this Module?
start10.3.2 Reflection Questions
start10.3.3 Quiz - Tools and Code Analysis
badge
Final Capstone Activity
expand
expand
Final Capstone Activity
startObjectives
startRequired Resources
badge
Ethical Hacker: Course Final Exam
expand
start
Course Final Exam
start
End of Course Survey

Resources


No data found
No Resources Found.
Back to top