Introduction to the course
Must have basics for a Penetration Tester
UPDATE - optional linux section. Just basics yet important part of all linux
Installation and configuration of lab for pentesting
-
01 Installation of Virtual Box (5:58)
-
02 Installtion of attacker - Kali (12:47)
-
03 Tour to Virtual Box and installing advance settings (10:20)
-
04 Tools required for labs (5:07)
-
05 Installing metasploitable on Virtual Box (6:10)
-
06 Windows Xp installation in Virtual box (6:34)
-
07 Tour to our attacker machine (11:33)
-
08 Tour to pentest tools and updating the machine (8:42)
Gathering information to perform pentesting
-
01 Installation and configuration of TOR for dark net (9:52)
-
02 Anonymity using proxychains (13:25)
-
03 Changing your MAC for tests (12:08)
-
04 DNSEnum information gathering (15:57)
-
05 Zone Transfer Vulnerability (5:51)
-
06 Dumping information with DIG (4:30)
-
07 DnsTracer and quick look to wireshark (11:53)
-
08 Is Dimitry still a good option (6:36)
-
09 Finding emails, subdomain and generating reports (11:45)
-
10 Assignment and recon-ng (6:53)
Learning about Nmap, Nikto, OpenVas and report genrating
-
01 Tweeking our labs for future use (6:08)
-
02 Nmap study and assignments to evaluate (9:03)
-
03 Solution of assignment and port scans (5:58)
-
04 Taking advantage of known Vulnerability and metasploit (11:38)
-
05 Scanning with Nikto (6:00)
-
06 Openvas installation and configuration (8:02)
-
07 Generating and analyzing pentesting reports (8:18)
Performing a Penetration Testing on a client
-
01 Getting NDA signed, permissions and scope of testing (4:32)
-
02 Information gathering about the client machine (10:58)
-
03 Attacking the machine with msfconsole (12:20)
-
04 Exploiting another vulnerability (3:53)
-
05 Sniffing the traffic with wireshark and get password (5:37)
-
06 Nmap Scripting Engine and distcc vulnerability (10:54)
Web Application Penetration Testing
-
06 DOM based XSS and learning resource (9:51)
-
04 Exploring the command injection vulnerability (7:10)
-
05 Reflected and stored XSS ie Cross Site Scripting (13:03)
-
03 Installing vega, firefox addons and Brute force attacks (5:51)
-
02 Installing test bed for web application pentesting (11:12)
-
01 Getting started with Web Application Pentesting (8:15)
-
07 Google Reward Program that gives 7500 dollar for Xss (6:45)
-
09 refrence to further 6 hour content on sql injection and shells and defacing (9:10)
-
08 Cross site request forgery Vulnerability (8:44)
Automation of Web Application pentesting
Wep App Pentesting Challenge
Getting started with metasploit Framework
Wireless Pentesting
Thanks for taking the course and future updates
