KVRA    : 001
Title   : Penetration Testing Course
Author  : Ly Marolin
Status  : Active
Create  : 16th Sep 2020
Update  : 16th Sep 2020
Version : first

schedule

introduction

1.  pentestration testing overview
2.  course objective
3.  building LAB environment

details

[https://www.imperva.com/learn/application-security/penetration-testing]

[https://www.coresecurity.com/penetration-testing#what-is-pen-testing]

[https://youtu.be/X4eRbHgRaw]

[https://youtu.be/3Kq1MIfTWCE]

survival skills

1.  linux fundamental
2.  python languages fundamental
3.  cryptography fundamental
4.  penetration testing methologies

details

[https://www.netacad.com/]

inforamtion gathering

1.  passive information gathering
2.  active information gathering
3.  vulnerability scanning

details

[https://www.w3schools.in/ethical-hacking/information-gathering-techniques/]

exploitation

1.  finding public exploit
2.  exploiting the target
3.  exploit file transferring
4.  privilege escalation

details

[https://www.offensive-security.com/awae-oswe/]

metasploit framework

1.  metasploit basic
2.  information gathering
3.  exploitation

details

[https://docs.rapid7.com/metasploit/msf-overview]

[https://www.metasploit.com/]

[https://www.youtube.com/watch?v=aRwxsn9ZEQw]

[https://www.youtube.com/watch?v=YRm-St0bJhU]

[https://www.youtube.com/watch?v=8lR27r8Y_ik]

password attacks

1.  password dictionary
2.  online password attack
3.  hash cracking

details

[https://securityaffairs.co/wordpress/75170/hacking/hacking-wifi-wpa-wpa2.html]

[https://www.youtube.com/watch?v=r0l_54thSYU&feature=emb_rel_end]

pivoting

1.  overview
2. performing
3.  port forwarding with MSF
4.  SSH port forwarding

detail

[https://fi.co/insight/what-pivoting-is-when-to-pivot-and-how-to-pivot-effectivel]

[https://www.youtube.com/watch?v=kRXVQdzRbzI&list=RDCMUC0ZTPkdxlAKf-V33tqXwi3Q&start_radio=1&t=7]

web application security

1.  overview
2.  burpsuite
3.  file inclusion
4.  cross-site request forgery
5.  server site request forgery
6.  insecure direct object reference
7.  SQL injection

detail

[https://portswigger.net/web-security/sql-injection]

[https://www.udemy.com/course/sql-injection-ethical-hacking/learn/lecture/11663828#overview]

[https://www.youtube.com/watch?v=JZN3JhoAdWo]

reference

1. ethical hacking from scratch

[https://book4you.org/book/5066058/9a2aee]

2. penetration testing

[https://book4you.org/book/2482934/27a641?dsource=recommend]

3. metasploit (the penetration tester's guide)

[https://book4you.org/book/1216358/a8f462?dsource=recommend]

4. cisco CCNA

[https://book4you.org/book/3488892/379610]

5. CEH ethical hacking

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cyber-learning001.md

cyber-learning001.md

schedule

introduction

[https://www.imperva.com/learn/application-security/penetration-testing]

[https://www.coresecurity.com/penetration-testing#what-is-pen-testing]

[https://youtu.be/X4eRbHgRaw]

[https://youtu.be/3Kq1MIfTWCE]

survival skills

[https://www.netacad.com/]

inforamtion gathering

[https://www.w3schools.in/ethical-hacking/information-gathering-techniques/]

exploitation

[https://www.offensive-security.com/awae-oswe/]

metasploit framework

[https://docs.rapid7.com/metasploit/msf-overview]

[https://www.metasploit.com/]

[https://www.youtube.com/watch?v=aRwxsn9ZEQw]

[https://www.youtube.com/watch?v=YRm-St0bJhU]

[https://www.youtube.com/watch?v=8lR27r8Y_ik]

password attacks

[https://securityaffairs.co/wordpress/75170/hacking/hacking-wifi-wpa-wpa2.html]

[https://www.youtube.com/watch?v=r0l_54thSYU&feature=emb_rel_end]

pivoting

[https://fi.co/insight/what-pivoting-is-when-to-pivot-and-how-to-pivot-effectivel]

[https://www.youtube.com/watch?v=kRXVQdzRbzI&list=RDCMUC0ZTPkdxlAKf-V33tqXwi3Q&start_radio=1&t=7]

web application security

[https://portswigger.net/web-security/sql-injection]

[https://www.udemy.com/course/sql-injection-ethical-hacking/learn/lecture/11663828#overview]

[https://www.youtube.com/watch?v=JZN3JhoAdWo]

reference

[https://book4you.org/book/5066058/9a2aee]

[https://book4you.org/book/2482934/27a641?dsource=recommend]

[https://book4you.org/book/1216358/a8f462?dsource=recommend]

[https://book4you.org/book/3488892/379610]

[https://book4you.org/s/CEH]

Files

cyber-learning001.md

Latest commit

History

cyber-learning001.md

File metadata and controls

schedule

introduction

[https://www.imperva.com/learn/application-security/penetration-testing]

[https://www.coresecurity.com/penetration-testing#what-is-pen-testing]

[https://youtu.be/X4eRbHgRaw]

[https://youtu.be/3Kq1MIfTWCE]

survival skills

[https://www.netacad.com/]

inforamtion gathering

[https://www.w3schools.in/ethical-hacking/information-gathering-techniques/]

exploitation

[https://www.offensive-security.com/awae-oswe/]

metasploit framework

[https://docs.rapid7.com/metasploit/msf-overview]

[https://www.metasploit.com/]

[https://www.youtube.com/watch?v=aRwxsn9ZEQw]

[https://www.youtube.com/watch?v=YRm-St0bJhU]

[https://www.youtube.com/watch?v=8lR27r8Y_ik]

password attacks

[https://securityaffairs.co/wordpress/75170/hacking/hacking-wifi-wpa-wpa2.html]

[https://www.youtube.com/watch?v=r0l_54thSYU&feature=emb_rel_end]

pivoting

[https://fi.co/insight/what-pivoting-is-when-to-pivot-and-how-to-pivot-effectivel]

[https://www.youtube.com/watch?v=kRXVQdzRbzI&list=RDCMUC0ZTPkdxlAKf-V33tqXwi3Q&start_radio=1&t=7]

web application security

[https://portswigger.net/web-security/sql-injection]

[https://www.udemy.com/course/sql-injection-ethical-hacking/learn/lecture/11663828#overview]

[https://www.youtube.com/watch?v=JZN3JhoAdWo]

reference

[https://book4you.org/book/5066058/9a2aee]

[https://book4you.org/book/2482934/27a641?dsource=recommend]

[https://book4you.org/book/1216358/a8f462?dsource=recommend]

[https://book4you.org/book/3488892/379610]

[https://book4you.org/s/CEH]