Course curriculum

  • 1

    Welcome to Your Web Application Hacking Course!

    • Course Introduction

  • 2

    Course Introduction & Lab Setup

    • Hacking Lab Setup

    • Virtualization Experience

  • 3

    Hacking with Kali Linux

    • Kali Linux Overview

    • Kali Linux Hacking Tools

    • Customizing Your Kali Linux Environment

    • Metasploit Database Setup

  • 4

    Linux Refresher

    • Linux Refresher

  • 5

    Tilix - Tiling Terminal Emulator

    • Improving Your Terminal Efficiency with Tilix

  • 6

    Central InfoSec CTF

    • Capture the Flag (CTF)

    • Central InfoSec CTF

    • Central InfoSec CTF Categories

  • 7

    Central InfoSec Vulnerable Web Server

    • Vulnerable Web Server Overview

  • 8

    Laws & Compliance

    • Legal Concerns

    • Compliance

  • 9

    Penetration Testing

    • Penetration Testing Terminology

    • Penetration Testing

  • 10

    Penetration Testing Methodology

    • Penetration Testing Methodology Overview

    • Pen Test Methodology: Pre-Engagement Interactions

    • Pen Test Methodology: Intelligence Gathering

    • Pen Test Methodology: Threat Modeling

    • Pen Test Methodology: Vulnerability Analysis

    • Pen Test Methodology: Exploitation

    • Pen Test Methodology: Post Exploitation

    • Pen Test Methodology: Reporting

  • 11

    Tradecraft, Cryptography, & Steganography

    • Tradecraft

    • Cryptography

    • Steganography

  • 12

    Password Hacking & Security

    • Password Security Overview

    • Password Attacks

    • Windows vs Unix Passwords

    • Password Attack Tools

    • Basic Rockyou Filtering

    • Advanced Rockyou Filtering

    • Password Attacks with Hydra

    • Cracking Hashes with John

    • 7z Crack

  • 13

    Open Web Application Security Project (OWASP)

    • Open Web Application Security Project (OWASP)

    • OWASP Web App Security Testing

  • 14

    OSINT, Reconnaissance, Scanning, & Banner Grabbing

    • Open-Source Intelligence (OSINT)

    • Scanning

    • Reconnaissance

    • Banner Grabbing

  • 15

    Scanning with Nmap

    • Nmap Overview

    • Nmap Host Discovery & DNS Resolution

    • Nmap Common Scan Options

    • Nmap Version Detection & Operating System Detection

    • Nmap Scanning Exclusions

    • Nmap Working with Input & Output Files

    • Nmap Scan Types

    • Nmap Cloaking & Spoofing Scans

    • Nmap Advanced Scanning Options

    • Nmap Scripting Engine for Scanning

    • Zenmap Overview

    • Nmap Vulnerability Scanning

  • 16

    Netcat Shells

    • Netcat

  • 17

    Exploiting Metasploitable 2

    • Metasploitable 2 Overview

    • Exploiting Metasploitable 2

    • vsFTPd Backdoor

    • Apache PHP-CGI Argument Injection RCE

    • UnrealIRCd Backdoor

    • Samba Command Injection

    • MySQL

    • Remote Execution Service

    • Rogue Shell Backdoor

    • Java RMI Server Insecure Configuration

    • DistCC Daemon Command Execution

    • Exploiting Metasploitable 2 Web Apps

    • Exploiting Apache Tomcat Manager

  • 18

    Hacking Web Apps with Burp Suite

    • Intercepting Proxies

    • Burp Suite Overview

    • Burp Suite Installation

    • Burp Suite Usage

    • Burp Suite Key Components

    • Burp Suite Useful Features

    • Burp Suite Tricks & Hacks

    • Exploring Burp Suite

  • 19

    HTTP, URLs, URIs, HTML, JS, CSS, & Coding

    • HTTP Overview

    • HTTP User-Agents Strings

    • HTTP Headers

    • HTTP Request Methods

    • HTTP Status Codes

    • HTTP State, Cookies, & Proxy

    • URLs & URIs

    • Hypertext Markup Language (HTML) & CSS

    • Programming & Coding (Python, JavaScript, PHP, PowerShell)

  • 20

    Common Web App Files & Pages

    • Common Web Files & Pages

  • 21

    Common Web App Pen Test Tools

    • Common Web Application Pen Test Tools (Dirb, DirBuster, Nikto, Wpscan, Sqlmap, Wfuzz, Aquatone, CeWL)

    • Useful Firefox Extensions

  • 22

    Common Web App Vulnerabilities

    • Common Web App Vulnerabilities

  • 23

    Course Conclusion

    • Congrats on Completing the Course!