Ethical Hacking and Pentesting Guide

$12.99
266 lessons
18.5 hours of video content

Get practical experience and prepare for industry certification exams by learning ethical hacking & penetration testing.

BUY FOR $12.99 Join Networkchuck Academy

Join The Networkchuck ACADEMY

Unlock this course, plus access our library of 20+ courses and 1,200
lessons ($199 value) by joining as an Academy Member for $12/month today.

Join Networkchuck Academy

Course curriculum

1. 1. Syllabus
1. 2. introduction
2. 3. intro video
3. 4. What is "Ethical" hacking"
4. 5. How to engage a target
5. 6. How to engage a target
6. 7. @Ch1R0n1n: What it means to be an Ethical Hacker.pdf
7. 8. @Ch1R0n1n: What it means to be an Ethical Hacker.pptx
8. Assignment 1: Assignment: Describe the deliverables of a pentest in your own words
9. Quiz 1: How ethical are you?
10. 10. Assignment: Let's fuzz hackxpert.com
1. 11. Web fundamentals Video
2. 12. Web Fundamentals
3. 13. Networking fundamentals
4. 14. Assignment: Networking
5. 15. Transferring files
6. Assignment 2: Realistic assignment: Fuzz our pentesting assignment
7. 16. Downloading files
8. 17. Fuzzing
9. Quiz 2: 00x02 Fundamentals
1. 18. Assignment: Using OWASP ZAP
2. 19. Linux CLI
3. 20. Netcat
4. 21. Netcat In depth Article
5. 22. Owasp ZAP
6. 23. DNS in depth
7. 24. DNS
8. Quiz 3: 00x03 tools
9. 25. Assignment: 00x03 DNS
10. Quiz 4: 00x03 DNS
1. 26. Passive information gathering
2. 27. Passive information gathering
3. Quiz 5: 00x04 Passive information gathering
1. 28. Getting a foothold
2. 29. Directory Busting Video Part
3. 30. Directory Busting PPTX
4. 31. Directory Brute forcing by Uncle rat PDF
5. 32. Working with Exploits
6. 33. Working with Exploits.pptx
7. 34. SMB enum
8. 35. SMB Enumeration
9. 36. SMB Enumeration slides
10. 37. SNMP enum
11. 38. NFS enum
12. 39. Telnet enum
13. 40. SSH enum
14. 41. FTP Enum
15. 42. FTP Enum
16. 43. FTP Enumeration
17. Assignment 3: Assignment: - Foothold
18. Quiz 6: 0x05 Enum
1. 44. Linux priv-esc
2. 45. Linux priv esc PPTX
3. 46. Linux priv esc Article
4. 47. Linux priv esc Ex 1
5. 48. Linux priv esc Ex 2
6. 49. Windows Priv Esc
7. 50. Windows priv esc Article
8. Quiz 7: Privilege escalation [Linux]
9. Assignment 4: Linux priv esc
1. 51. Vulnerability scanning
2. 52. Nmap NSE
3. 53. OpenVas
4. 54. Vulnerability scanning 02
1. 55. Buffer overflows Walkthrough
2. 56. Buffer Overflows PPTX
1. 57. Intro
2. 58. Dashboard + live and passive scans
3. 59. Target tab
4. 60. Proxy tab
5. 61. Intruder
6. 62. Repeater
7. 63. Sequencer
8. 64. Decoder
9. 65. Comparer
10. 66. 10 Market place (Plugins)
11. 67. Burp Suite Extender
12. 68. Burp collaborator
13. 69. Burp Authorize
14. 70. Burp Match and replace
15. 71. Burp Suite Content discovery
16. 72. Burp suite Top 5 Proffesional extensions
17. 73. Testing mobile applications with burp suite
18. 74. Burp suite How to use burp to look for SQLi
19. Quiz 8: Burpsuite
1. 75. JWT hacking
2. 76. Lab: JWT hacking
1. 77. Open redirects: what are they and what is the impact?
2. 78. Open redirects
3. 79. Labs: Open redirects
4. Quiz 9: Open Redirects
1. 80. What Exactly Is CSRF And How Does It Look Like In PHP
2. 81. bug-bounty-beginner-methodology -csrf
3. 82. How Uncle Rat Hunts For CSRF During Bug Bounties
4. 83. CSRF - Full text
5. 84. Labs: CSRF
6. Quiz 10: CSRF
1. 85. Broken access control - what is it and how do you test for it.
2. 86. BAC.png
3. 87. BAC.pdf
4. Quiz 11: BAC : Quiz
5. 88. Lab: BAC
6. 89. Solutions lab:BAC
1. 90. IDOR Exp
2. 91. IDOR - Slides.pdf
3. 92. idors-what-are-they-and-how-do-you-look-for-them
4. 93. 5-ways-to-test-for-idor-demonstrated
5. 94. did you know you can chain idors
6. 95. don't test for idors manually autorize is so much faster
7. Quiz 12: IDOR
8. 96. Labs IDOR
9. 97. Solution labs IDOR
1. 98. business logic vulnerabilities
2. 99. business logic flaws you should probably look into this
3. 100. Business_logic_vulnerabilities.pdf
4. 101. full-business-logic-flaws
5. 102. labs Logic errors
6. Quiz 13: Business Logic
1. 103. Intro
2. 104. XXE-Full text PDF
3. 105. what-is-xxe
4. 106. finding attack vectors
5. 107. exploiting
6. 108. wafs-and-filters
7. 109. XML_eXternal_Entities.pdf
8. 110. Tools and prevention
9. 111. Labs: XXE
10. Quiz 14: XXE
1. 112. CSTI.pdf
2. 113. SSTI
3. 114. The crazy world of SSTi.pdf
4. 115. CSTI.pptx
5. 116. Client Side Template Injection
6. 117. Server Side Template Injection
7. 118. CSTI labs
1. 119. ultimate-xss-guide
2. 120. XSS - Ultimate beginner guide.pdf
3. 21. WAF evasion techniques
4. 122. Testing for reflected XSS.pdf
5. 123. Testing for stored XSS
6. 124. DOM XSS
7. 125. advanced xss techniques
8. 126. XSS - Advanced techniques.pdf
9. 127. waf bypass techniques
10. 128. Labs: XSS
1. 129. Insecure deserilisation
2. 130. Insecure deserilisation: Not as hard as you think
3. 131. OWASP TOP 10: Insecure deserilisation
1. 132. CAPTCHA bypasses
2. 133. Captcha bypass
3. 134. 00x10 Labs: Captcha bypass
1. 135. SSRF-Slides
2. 136. SSRF
3. 137. blind-ssrf_-what-is-it_-impact_-how-to-exploit-it_.
4. 138. uncle rats ultimate ssrf guide for bug bounties.
5. Quiz 15: SSRF
1. 139. Command_injection - Slides
2. 140. os-command-injection
3. 141. how do i test for blind command injection
4. 142. uncle rats ultimate guide to finding os command injection
1. 143. 0-intro
2. 144. 1-what-are-sqli
3. 145. 2-detecting-sqli
4. 146. 3-types-of-sqli
5. 147. 4-boolean-based-sqli
6. 148. 5-sqlmap
7. 149. 6-references-amp-exercises
8. 150. Slides (1).pdf
9. 151. 1-portswigger-simple-login-bypass
10. 152. 2-union-based-sqli-to-rce
11. 153. 3-mssql-injection-to-rce
12. 154. 4-waf-bypasses
13. 155. 5-sqli-waf-bypass
14. 156. 6-sqli-xss-and-xxe-all-in-one-payload
1. 157. admin login panel bypass
2. 158. 00x10/11 (Admin) login pages
3. 159. Assignment: 00x10/11 (Admin) login pages - Labs
1. 160. JWT tokens - What are they and how can we hack them
2. 161. Labs: JWT Hacking
1. 162. Broad scope methodology Manual
2. 163. manual-recon
3. 164. 0 Subdomain Enum
4. 165. 2 processing subdomains
5. 166. 2 Checking the list
6. 167. automatic-recon
7. 168. Automatic subdomain enum pptx
1. 169. Subdomain flyover
2. 170. subdomain-flyover
3. 171. exploiting-open-ports
4. 172. Exploiting open ports
1. 173. A vulnerability scanning
2. 174. B Chaining it all together
3. 175. our-attack-strategy
4. 176. vulnerability scanning
1. 177. Creating our list of subdomains
2. 178. Processing our list of subdomains
3. 179. Subdomain flyover
4. 180. Exploiting open ports
5. 181. Vulnerability scanning
6. 182. Vulnerability testing strategy
1. 183. Analyzing javascript files
2. 184. What the ffuf
3. 185. Nuclei template cheat sheet
4. 186. vulnerability scanning
5. 187. Nuclei scanning
6. 188. Running your scripts on a VPS
7. 189. Broad Scope Methodology
8. 190. Directory brute forcing
9. 191. quickly identify a target from a list of thousands of dns records multi domain
10. 192. exploit db examples
11. 193. List of tools
12. 194. you are probably doing directory brute forcing wrong heres why
13. Quiz 16: Creating nuclei templates
1. 195. Postman - Theory
2. 196. API hacking with postman Part 1 - getting the basics down.
3. 197. API hacking with postman Part 2 - importing the API description
4. 198. API hacking with postman Part 3 Pre-request scripts, tests and console
5. 199. API hacking with postman Part 4 - Getting dirty with data sources
6. 200. REST API goat project
7. 201. postman lab Tiredful API
8. 202. API Broken Access Control Through Replacing HTTP Method
9. 203. API hacking by Chaining postman into burp suite
1. 204. API0 2019 What is an API
2. 205. API1 2019 Broken Object Level Authorization
3. 206. API2 2019 Broken User Authentication
4. 207. API3 2019 Excessive Data Exposure
5. 208. API4 2019 Lack of rate limiting
6. 209. API5 2019 Broken Function Level Authorization
7. 210. API6 2019 Mass Assignment
8. 211. API7 2019 Security Misconfiguration
9. 212. API8 2019 Injection
10. 213. API9 2019 Improper Assets Management
11. 214. API top 10 - 0 through 3
12. 215. OWASP API TOP 10 - 4 to 7
13. 216. API8-2019 Injection
14. 217. API9-2019 improper asset management
15. 218. OWASP API top 10 - 10 insufficient logging and monitoring
1. 219. OWASP M1.2016 improper platform usage
2. 220. OWASP M2.2016 - insecure data storage
3. 221. OWASP M3.2016 Insecure communication
4. 222. OWASP M4.2016 Insecure authentication
5. 223. OWASP M5 Insufficient cryptography
6. 224. OWASP M6. Insecure authorization
7. 225. OWASP M7. bad code quality
8. 226. OWASP M8. Code tampering
9. 227. OWASP M9 Reverse engineering
10. 228. OWASP M10. Extranous functionality
1. 229. installation-chapter-1
2. 230. installation-chapter-2
3. 231. installation-chapter-3
4. 232. installation-chapter-4
5. 233. Mobile android lab setup.pptx
1. 234. Password Cracking
2. 235. Tools List
1. 236. Automation
2. 237. Pentesting checklist
3. 238. NDA example (You get this from the client)
4. 239. Assignment example
5. 240. Test plan example
6. 241. Test report example
1. 242. Ethical hacking guide A-Z_FR_V1.1_Chap_1.docx
2. 243. Ethical hacking guide A-Z_FR_V1.1_Chap_2.docx
3. 244. Ethical hacking guide A-Z_FR_V1.1_Chap_3.docx
4. 245. Ethical hacking guide A-Z_FR_V1.1_Chap_4.docx
5. 246. Ethical hacking guide A-Z_FR_V1.1_Chap_5.docx
6. 247. Ethical hacking guide A-Z_FR_V1.1_Chap_6.docx

Join NetworkChuck Academy

NetworkChuck
Academy Perks

$12

Monthly Membership
20+ on-demand courses at your fingertips

Over 1,300 educational lessons

200+ hours of expert content

Exclusive community chat forum
ENROLL FOR $12/MO
$120 ($10/mo)

Annual Membership
20+ on-demand courses at your fingertips

Over 1,300 educational lessons

200+ hours of expert content

Exclusive community chat forum

Special perks coming soon
Enroll for $120/Year

Section 1: 0x00 Syllabus

Section 2: 0x01 Introduction

Section 3: 0x02 Networking And Web Application Basics

Section 4: 0x03 Tools

Section 5: 0x04 Passive Information Gathering

Section 6: 0x05 Getting a Foothold

Section 7: 0x06 Privileged Escalation

Section 8: 0x07 Vulnerability Scanning

Section 9: 0x08 Buffer Overflows

Section 10: 0x09 Burp Suite (Large Section)

Section 11: 0x10 -00 Introduction to JWT Hacking

Section 12: 00x10-01 Open Redirect

Section 13: 00x10-02 CSRF

Section 14: 00x10-03 Broken Access Control

Section 15: 00x10-04 IDOR

Section 16: 00x10-05 Business Logic Flaws

Section 17: 00x10-06 XXE

Section 18: 00x10-07 Template Injections

Section 19: 00x10-08 XSS

Section 20: 00x10-09 Insecure Deserilisation

Section 21: 00x10-10 Captcha bypasses

Section 22: 00x10-11 SSRF

Section 23:00x10 OS Command Injection

Section 24: 00x10 SQLi

Section 25: 00x10/11-11 (Admin) Login Pages

Section 26: 00x10-12 Introduction to JWT Hacking

Section 27: 00x11-1 Broad scope web application methodology - General methodology

Section 28: 00x11-2 Broad scope web application methodology - Manual hacking

Section 29: 00x11-3 Broad scope web application methodology - Vulnerability scanning

Section 30: 00x11-4 Broad scope web application methodology - Practical methodology

Section 31: 00x11-5 Broad scope web application methodology - Extra's

Section 32: 0x12 API Testing

Section 33: 00x12 OWASP API TOP 10

Section 34: 0x13 Mobile Hacking

Section 35: 00x13 Mobile Hacking - Setting up an android lab

Section 36: 0x16 - Password Attacks

Section 37: Extras

Section 38: French Translation

$12

$120 ($10/mo)