fbpx
4.53 out of 5
4.53
38529 reviews on Udemy

Learn Ethical Hacking From Scratch

Become an ethical hacker that can hack computer systems like black hat hackers and secure them like security experts.
Instructor:
Zaid Sabih
192,532 students enrolled
English [Auto-generated] More
130+ ethical hacking & security videos
Start from scratch up to a high-intermediate level
Learn what is ethical hacking, its fields and the different types of hackers
Install hacking lab & needed software (works on Windows, OS X and Linux)
Hack & secure both WiFi & wired networks
Discover vulnerabilities & exploit them hack into servers
Hack secure systems using client-side and social engineering attacks
Use 30+ hacking tools such as Metasploit, Aircrack-ng, SQLmap.....etc
Understand how websites work, how to discover and exploit web application vulnerabilities to gain full control over websites
Secure systems from all the attacks shown
Install Kali Linux - a penetration testing operating system
Install windows & vulnerable operating systems as virtual machines for testing
Learn linux basics
Learn linux commands and how to interact with the terminal
Learn Network Penetration Testing
Network basics & how devices interact inside a network
A number of practical attacks that can be used without knowing the key to the target network
Control connections of clients around you without knowing the password.
Create a fake Wi-Fi network with internet connection & spy on clients
Gather detailed information about clients and networks like their OS, opened ports ...etc.
Crack WEP/WPA/WPA2 encryptions using a number of methods.
ARP Spoofing/ARP Poisoning
Launch Various Man In The Middle attacks.
Gain access to any account accessed by any client in your network.
Sniff packets from clients and analyse them to extract important info such as: passwords, cookies, urls, videos, images ..etc.
Discover open ports, installed services and vulnerabilities on computer systems
Gain control over computer systems using server side attacks
Exploit buffer over flows and code execution vulnerabilities to gain control over systems
Gain control over computer systems using client side attacks
Gain control over computer systems using fake updates
Gain control over computer systems by backdooring downloads on the fly
Create undetectable backdoors
Backdoor normal programs
Backdoor any file type such as pictures, pdf's ...etc.
Gather information about people, such as emails, social media accounts, emails and friends
Use social engineering to gain full control over target systems
Send emails from ANY email account without knowing the password for that account
Read, write download, upload and execute files on compromised systems
Capture keystrokes on a compromised system
Use a compromised computer as a pivot to gain access to other computers on the same network
Understand how websites & web applications work
Understand how browsers communicate with websites
Gather sensitive information about websites
Discover servers, technologies and services used on target website
Discover emails and sensitive data associated with a specific website
Find all subdomains associated with a website
Discover unpublished directories and files associated with a target website
Find all websites hosted on the same server as the target website
Exploit file upload vulnerabilities & gain full control over the target website
Discover, exploit and fix code execution vulnerabilities
Discover, exploit & fix local file inclusion vulnerabilities
Discover, fix, and exploit SQL injection vulnerabilities
Bypass login forms and login as admin using SQL injections
Writing SQL queries to find databases, tables and sensitive data such as usernames and passwords using SQL injections
Read / Write files to the server using SQL injections
Learn the right way to write SQL queries to prevent SQL injections
Discover reflected XSS vulnerabilities
Discover Stored XSS vulnerabilities
Hook victims to BeEF using XSS vulnerabilities
Fix XSS vulnerabilities & protect yourself from them as a user

Welcome this comprehensive course on Ethical Hacking! This course assumes you have NO prior knowledge in hacking and by the end of it you’ll be able to  hack systems like black-hat hackers and secure them like security experts!

This course is highly practical but it won’t neglect the theory, so we’ll start with ethical hacking basics and the different fields in penetration testing, installing the needed software (works on Windows, Linux and Mac OS X) and then we’ll dive and start hacking systems straight away. From here onwards you’ll learn everything by example, by analysing and exploiting computer systems such as networks, servers, clients, websites …..etc, so we’ll never have any boring dry theoretical lectures.

The course is divided into a number of sections, each section covers a penetration testing / hacking field, in each of these sections you’ll first learn how the target system works, the weaknesses of this system, and how to practically exploit theses weaknesses and hack into it, not only that but you’ll also learn how to secure this system from the discussed attacks. This course will take you from a beginner to a more advanced level by the time you finish, you will have knowledge about most penetration testing fields.

The course is divided into four main sections:

1. Network Hacking – This section will teach you how to test the security of networks, both wired and wireless. First, you will learn some  basic network terminology, how networks work,  and how devices communicate with each other. Then it will branch into three sub sections:

  • Pre-connection attacks: in this subsection you’ll learn what can you do before even connecting to a network, and even before having internet access; you’ll start by learning how to gather information about the networks around you, discover the devices connected to them, and how to control connections around you (ie: deny/allow devices from connecting to networks) even without knowing the password of the target network.
  • Gaining Access: Now that you gathered information about the networks around you, in this subsection you will learn how to crack the key and get the password to your target network weather it uses WEP, WPA or even WPA2.
  • Post Connection attacks: Now that you have the key, you can connect to the target network, in this subsection you will learn a number of powerful techniques that allow you to gather comprehensive information about the connected devices, see anything they do on the internet (such as login information, passwords, visited urls, images, videos ….etc), redirect requests, inject evil code in loaded pages and much more! All the attacks here work against both wireless and wired networks. You will also learn how to create a fake WiFi network, attract users to connect to it and use all of the above techniques against the connected clients.

2. Gaining Access – In this section you will learn two main approaches to gain full control or hack computer systems:

  • Server Side Attacks:  In this subsection you will learn how to gain full access to computer systems without the need for user interaction. You will learn how to gather useful information about a target computer system such as its operating system, open ports, installed services, then you’ll learn how to use this information to discover weaknesses and vulnerabilities and exploit them to gain full control over the target. Finally you will learn how to generate different types of reports for your discoveries.
  • Client Side Attacks – If the target system does not contain any weaknesses then the only way to gain access to it is by interacting with the users, in this subsection you’ll learn how to get the target user to install a backdoor on their system without even realising, this is done by hijacking updates or backdoornig downloadeds on the fly. Not only that but you’ll also learn how to create trojans by backdooring normal files (such as an image or a pdf) and use social engineering to deliver this trojan to the target, to do this you’ll learn how to spoof emails so they appear as if they’re sent from the target’s friend, boss or any email account they’re likely to interact with.

3. Post Exploitation – In this section you will learn how to interact with the systems you compromised so far. You’ll learn how to access the file system (read/write/upload/execute), maintain your accessspy on the target and even use the target computer as a pivot to hack other computer systems.

4. Website / Web Application Hacking – In this section you will learn how websites work, how to gather information about a target website (such as website owner, server location, used technologies ….etc) and how to discover and exploit the following dangerous vulnerabilities to hack into websites:

  • File Upload.
  • Code Execution.
  • Local File Inclusion.
  • Remote File Inclusion.
  • SQL Injection.
  • Cross Site Scripting (XSS).

At the end of each section you will learn how to detect, prevent and secure your system and yourself from the discussed attacks.

All the techniques in this course are practical and work against real systems, you’ll understand the whole mechanism of each technique first, then you’ll learn how to use it to hack into the target system, so by the end of the course you’ll be able to modify the these techniques to launch more powerful attacks, and adopt them to different situations and different scenarios.

With this course you’ll get 24/7 support, so if you have any questions you can post them in the Q&A section and we’ll respond to you within 15 hours.

NOTE: This course is created for educational purposes only and all the attacks are launched in my own lab or against devices that I have permission to test. 

Introduction

1
Course Introduction & Overview

Welcome to the course, this lecture will give you a full outline of the structure of the course, and will give you an over view of what you will learn in each section.

2
Teaser - Hacking a Windows 10 Computer & Accessing Their Webcam

This is a teaser lecture, in it I show you an example of the things that you'll be able to do at the end of the course, in this lecture I show you how to hack into a Windows 10 machine and turn on its web cam without asking the user to do anything.

As this is a teaser lecture, I won't be going into details about how is this achieved, but don't worry about that as I will break this down to you through out the course and you will understand exactly how to do that.

This is just one example, by the end of the course you'll learn much more attacks and be able to target all operating systems.

3
What Is Hacking & Why Learn It ?

In this lecture you will learn what is meant by a hacker and what is the difference between white hat, grey hat and a black hat hacker. We will talk about why do we teach/learn hacking, benefits of it and job opportunities.

Setting up The Lab

1
Lab Overview & Needed Software

In this course, we will be using a number of operating systems, Kali for hacking and 2 others as victim or target machines, in this section you will learn how to install all of these machines as virtual machines inside your current operating system, this allow use to use all of the machines at the same time, it also completely isolates these machines from your main machine therefore your main machine will not be affected if anything goes wrong.

This lecture will give you an overview of the lab that we will need to set up for this course.

2
Installing Kali 2019 As a Virtual Machine

This lecture will give you an overview of what software you need to install for this course, and how it can be installed.

You will also see how to install Kali as a virtual machine.

3
Creating & Using Snapshots

In this lecture, you will learn how to store the current state of the virtual machines and how to use these restore points, this is very useful because it allows you to go back or forward to different configurations of the operating system.

Linux Basics

1
Basic Overview of Kali Linux

In this lecture we will have a basic look on Kali linux just to get you comfortable with using it.

You will learn how to use its main applications, browse files, connect to the internet ....etc.

2
The Terminal & Linux Commands

In this lecture you will learn how to interact with the linux terminal and run linux commands.

Network Hacking

1
Network Penetration Testing Introduction

This is an introduction lecture for the network penetration testing section, it will give you an overview of the structure of this section and what you will learn in it

2
Networks Basics

Before jumping to network hacking you need to know some basics about networks, in this lecture you will learn how networks work and how devices communicate with each other.

3
Connecting a Wireless Adapter To Kali

This video will teach you how to connect a USB device to Kali, as an example I will be connecting a wireless adapter to it so I can interact with wireless networks and try to hack them form Kali.

4
What is MAC Address & How To Change It

Media Access Control or MAC address is a uniques ID assigned to each network card, in this lecture you shall learn what is it, what does it do and how to change it.

5
Wireless Modes (Managed & Monitor)

This lecture will clarify why is it possible to capture any packet around us even if it's not directed to our device, you will learn about two wireless modes: monitor and managed mode, you shall learn what is the difference between them, when do we use each of them and how to correctly enable monitor mode on your wireless card.

Network Hacking - Pre Connection Attacks

1
Packet Sniffing Basics Using Airodump-ng

This is the first lecture in the "pre connection section", in this lecture you will learn how to use airodump-ng to see all the access points (WiFi Networks) and associated clients that are within your wireless range and gather information about them.

2
WiFi Bands - 2.4Ghz & 5Ghz Frequencies

In this lecture you will learn what are the 2 bands used on WiFi networks and how to use airodump-ng to capture data sent over these bands

3
Targeted Packet Sniffing Using Airodump-ng

In this lecture , we shall learn how to launch airodump-ng on a specific AP , and store all packets in a capture file.

4
Deauthentication Attack (Disconnecting Any Device From The Network)

Deauthentication attacks allow us to disconnect (disassociate) any client that is connected to any network that is within our wifi range even if the network uses encryption (such as WEP/WPA/WPA2).

Network Hacking - Gaining Access (WEP/WPA/WPA2 Cracking)

1
Gaining Access Introduction

Welcome to this section of the course , in this section we shall learn how to break WEP/WPA/WPA2 encryption and determine the network key.

2
WEP Cracking - Theory Behind Cracking WEP Encryption

This lecture explains the weaknesses in WEP encryption and how we can use these weaknesses to break it.

3
WEP Cracking - Basic Case

In this video we shall learn the basics of cracking WEP encryption , the target is a WEP encrypted network with active clients.

4
WEP Cracking - Fake Authentication

In this lecture we shall learn the theory behind cracking WEP encrypted APs with no or idle clients.

To do this we will inject packets in the traffic, but before we can do that we need to authenticate our wifi card with the target AP so that it does not ignore our requests as AP's only accept packets from associated devices, therefore we shall learn how to fake authenticate our wifi card with the target AP so that it starts accepting packets from us.

5
WEP Cracking - ARP Request Replay Attack

This method can be used to crack idle or clientless AP's .

In this method , after successfully associating with the target AP , we will wait for an ARP packet , we will then capture this packet and inject it into the traffic , this will force the AP to generate a new ARP packet with a new IV , we capture this new packet and inject into the traffic again , this process is repeated until the number of IV's captured is sufficient enough to crack the key.

6
WPA/WPA2 Cracking - Introduction

This is an introduction to WPA/WPA2 , we shall learn what is the main difference between WPA and WEP and why WPA is more difficult to crack.

7
WPA/WPA2 Cracking - Exploiting WPS Feature

In this lecture we shall learn how to exploit the WPS feature to crack WPA/WPA2 encrypted AP's without a wordlist attack and without the need to any connected clients.

8
WPA/WPA2 Cracking - How To Capture The Handshake

In this lecture we shall learn how to capture the handshake from the target AP.

9
WPA/WPA2 Cracking - Creating a Wordlist

To crack WPA/WPA2 we need to use a wordlist attacks , you can download ready wordlists from the internet or create your own by following this lecture.

10
WPA/WPA2 Cracking - Using a Wordlist Attack

In this lecture we will use the wordlist created in the previous lecture to crack the WPA key using aircrack-ng.

11
Securing Your Network From The Above Attacks

In this lecture you will learn how to secure your network and protect it from the above attacks. 

12
How to Configure Wireless Security Settings To Secure Your Network

In this lecture you will learn how to access your router's admin panel and configure it correctly to protect it from the above attacks and make it nearly impossible to crack.

Network Hacking - Post Connection Attacks

1
Introduction

This lecture is an introduction to the last section of network penetration testing, it will give you an outline of what we shall learn in this section and some important notes.

2
Installing Windows As a Virtual Machine

In this lecture you will learn how to set up a windows virtual machine so that we can try and hack into it to practice penetration testing.

3
Information Gathering - Discovering Connected Clients using netdiscover

Gathering information is one of the most important steps in penetration testing. In this lecture we will learn how to use netdiscover to discover devices connected to the same network as us, we will be able to find their IP and MAC address.

4
Gathering More Information Using Zenmap

In this lecture we shall learn how to use zenmap (the GUI for nmap) to discover all connected devices and gather detailed information about these devices, such as their operating system, open ports and even services using these ports.

5
Gathering Even More Information Using Zenmap
6
MITM - ARP Poisoning Theory

In this video we shall learn about one of the most dangerous and effective attacks that you can launch on a network; (ARP Poisonning) , we shall learn the theory behind ARP poisoning, how does it work and how it can be used to redirect the flow of packets and place us in the middle of the connection.

7
MITM - ARP Spoofing using arpspoof

In this lecture we will learn how to use arpspoof to do a basic ARP poisoning attack and redirect the flow of packets in the network. 

8
MITM - ARP Spoofing Using MITMf

In this lecture we shall have a look on Man In The Middle Framework , how to use it to ARP poison a target client and sniff usernames and passwords from that target.

Basically you will learn how to capture any passwords entered by any device that's connected to the same network as you.

9
MITM - Bypassing HTTPS

In this lecture we shall learn how to bypass HTTPS/SSL so that we can capture passwords entered on HTTPS enabled web pages such as Hotmail and Yahoo.

10
MITM - DNS Spoofing

In this lecture we shall learn how to control DNS requests made by the target client, so basically it allows us to redirect requests made by computers on the same network to any other place, this can be very useful as it can be used to redirect computers to fake websites, fake updates, fake logins ...etc. 

11
MITM - Capturing Screen Of Target & Injecting a Keylogger

This lecture will teach you how to capture screenshots of any computer as long as you are the MITM, you will also learn how to inject a keylogger that will log all key strikes entered by the target .

12
MITM - Injecting Javascript/HTML Code

In this lecture you will learn how to inject HTML or Javascript code into the target browser, this is vey dangerous as it allows us to run a large number of attacks using javascript codes (more on this later), in this lecture we'll focus on injecting a simple javascript code.

13
MITM - Using MITMf Against Real Networks

So far we have been using MITMf against the Windows virtual machine thrugh the virtual Nat Network, in this lecture I will show you how to use MITMf against a real computer that's connected to a real WiFi network, I will also cover a few important points that you need to keep in mind when using it against real devices.

14
Wireshark - Basic Overview & How To Use It With MITM Attacks

Wireshark is a network protocol analyser, in this lecture we will have a basic overview on it, you will learn why is it useful and how to use it with MITM attacks or use it to analyse a capture file that contains data that you already sniffed.

15
Wireshark - Sniffing Data & Analysing HTTP Traffic

I this lecture you will learn how to use Wireshark to sniff data (traffic) sent/received by any client in your network. You will also learn how to analyse this data, filter HTTP traffic and find useful information such as the websites visited, sent requests and more!

16
Wireshark - Capturing Passwords & Cookies Entered By Any Device In The Network

In this lecture we will continue using Wireshark, you will learn more methods to analyse the captured data, you'll learn how to find packets that contain specific information, how to capture logins (usernames and passwords), and how to capture the cookies if the person has already logged in, we will have examples on Hotmail and Dailymotion.

17
Creating a Fake Access Point (Honeypot) - Theory

Fake access points can be handy in many scenarios , one example is creating an open AP , this will attract a lot of clients , many of which will automatically connect to it. Then we can sniff all the traffic created by the clients that connect to it , and since its open , the traffic will not be encrypted !

This lecture will explain the theory behind creating a fake AP and what do we need to make it work.

18
Creating a Fake Access Point (Honeypot) - Practical

In this lecture you will learn how to create a fake AP using a tool called Mana-Toolkit.

PS: run the following command to install Mana

apt-get install mana-toolkit


Network Hacking - Detection & Security

1
Detecting ARP Poisoning Attacks

In this lecture we shall learn two methods to detect ARP poisoning attacks.

2
Detecting suspicious Activities Using Wireshark

In this lecture we shall learn how to use Wireshark to detect ARP Poisoning attacks and other suspicious activities in the network, we will also learn how to protect against ARP Poisoning attacks.

Gaining Access To Computer Devices

1
Gaining Access Introduction

This is an introduction to the gaining access section which talks about a number of approaches to gain access to any computer device regardless of its type.

Gaining Access - Server Side Attacks

1
Installing Metasploitable As a Virtual Machine

In this lecture you will learn how to install a vulnerable operating system (Metasploitable) as a virtual machine so we can use it to practice penetration testing in future lectures.

2
Introduction

Server side attacks allow you to gain access to a target computer without user interaction, in this section you will learn a number of methods to launch server side attacks and gain full control over your target without user interaction.

3
Basic Information Gathering & Exploitation

In this lecture we will have a look on a basic example of gaining control over a target computer, we will use Zenmap to gather information and discover the vulnerability, then you'll learn how to research and exploit a mis-configured service.

4
Using a Basic Metasploit Exploit

Metasploit is a huge penetration testing framework, in this lecture you will learn  how to use it to exploit a vulnerable target and gain full control over it.

5
Exploiting a Code Execution Vulnerability

In this lecture we will use a more complex vulnerability to gain full access to a vulnerable device using Metasploit.

6
MSFC - Installing MSFC (Metasploit Community)

This lecture will teach you how to install Metasploit Community.

Metasploit Community is a GUI for Metasploit that can be used to scan targets, discover open ports and services, and map found vulnerabilities to Metasploit modules.

7
MSFC - Scanning Target(s) For Vulnerabilities

In this video you will learn how to scan target(s) using Metasploit Community, this will show open ports, installed services and Metasploit Modules that can be used against the target(s).

8
MSFC - Analysing Scan results & Exploiting Target System

In this video we will analyse the scan result obtained from the previous video and see how to launch a module and exploit the target system using Metasploit Community.

9
Nexpose - Installing Nexpose

Nexpose is a vulnerability management framework, it allows us to discover, assess and act on discovered vulnerabilities, it also tells us a lot of info about the discovered vulnerabilities, weather they are exploitable and helps us write a report at the end of the assessment.

When downloading Nexpose, you will be asked to enter a company email address, you can use the link in the resources to get a temporary email address which will be accepted by Nexpose.

10
Nexpose - How To Configure & Launch a Scan

This lecture will teach you how to launch a scan using Nexpose, you will learn how to setup your target(s) and configure scan to suit your goals.

11
Nexpose - Analysing Scan Results & Generating Reports

In this lecture we will analyse the scan results obtained from the previous video and see how to generate various types of reports.

Gaining Access - Client Side Attacks

1
Introduction

This section will teach you a number of methods to gain control over target computer using client side attacks.

Client side attacks require user interaction, this means for these attacks to work, the target user has to do something for our attack to work, for example install an update or download a file.

2
Installing Veil 3.1

In this lecture you will learn how to download and install Veil Framework.

3
Veil Overview & Payloads Basics

This lecture will give you an overview on Veil Framework and its basic commands.

You will also learn what is a payload and the different types of payloads that can be generated with Veil. 

4
Generating An Undetectable Backdoor Using Veil 3

In this lecture you will learn how to create a backdoor that is not detectable by antivirus programs, this is very important in client side attacks as we will be using this backdoor in future videos to try and gain control over the target system.

5
Listening For Incoming Connections

In this lecture you will learn how to listen for connections coming from the backdoor we generated in the previous lecture.

6
Using A Basic Delivery Method To Test The Backdoor & Hack Windows 10

Finally we will test the backdoor that we generated on a Windows machine and make sure that it works as expected.

7
Backdoor Delivery Method 1 - Using a Fake Update

This lecture will teach you how to gain full access over a target computer by serving it a fake update for an existing program, once the target user installs the update you will gain full access to their computer.

Note: you need to be the man in the middle for this method to work.

-------------

Note: The latest version of evilgrade does not work properly, so don't download evilgrade using the git clone command in the installation commands, instead download it from the following link:

https://www.dropbox.com/s/vr1mpesah1ybuai/evilgrade.zip?dl=0



8
Backdoor Delivery Method 2 - Backdooring Downloads on The Fly

In this lecture you will learn how to backdoor executables downloaded by any computer in your network on the fly, so when the target user run the program, the program that they expect will run, but at the same time our backdoor will run in the background.

Note: you need to be the man in the middle for this method to work.

9
How to Protect Yourself From The Discussed Delivery Methods

This lecture will teach you how to protect yourself from the backdoor delivery methods explained in the previous videos.

Gaining Access - Client Side Attacks - Social Engineering

1
Introduction

This lecture will give an overview of what social engineering is, and what will you be learning in the next few lectures.

2
Maltego Basics

Maltego is a great information gathering tool that we will use during this course, this lecture will give you an overview of this tool and its basic usage.

3
Discovering Websites, Links & Social Networking Accounts Associated With Target

In this lecture you will learn how to gather even more information about our target person, you will learn how to discover potential friends (emails and social network accounts) of people associated with the target person.

4
Discovering Twitter Friends & Associated Accounts

In this lecture you will learn how to gather even more information about our target person, you will learn how to discover potential friends (emails and social network accounts) of people associated with the target person.

5
Discovering Emails Of The Target's Friends

Finally you will learn how to discover emails of the target's friends, these can be very useful later on as we can pretend to be one of these friends and social engineer the target into doing something that would allow us to hack into their system.

6
Analysing The Gathered Info & Building An Attack Strategy

In this lecture we will zoom out and look at the information that we gathered about the target person (Zaid Sabih), we will analyse this info and come up with a number of attack strategies.

7
Backdooring Any File Type (images, pdf's ...etc)

This lecture will teach you how to step your social engineering game up by teaching you how to backdoor any file, this means that we can send our backdoor as an image, a pdf or a media file, once executed the target person will see the expected file, ie: an image or a pdf, but at the same time our backdoor will run in the background giving us full control over the target system.

This part will show you how to configure the download and execute payload.

8
Compiling & Changing Trojan's Icon

This lecture will teach you how to step your social engineering game up by teaching you how to backdoor any file, this means that we can send our backdoor as an image, a pdf or a media file, once executed the target person will see the expected file, ie: an image or a pdf, but at the same time our backdoor will run in the background giving us full control over the target system.

This part will show you how to compile the file that we created in the previous lecture to exe and change its icon.

9
Spoofing .exe Extension To Any Extension (jpg, pdf ...etc)

This is the last step into making the perfect backdoor, this lecture will teach you how to spoof the file extension so that it looks like backdoor.jpg or backdoor.pdf instead of the suspicious exe extension.

10
Spoofing Emails - Setting Up am SMTP Server

Spoofing emails is one of the best methods to communicate with your target , in this lecture you'll learn how to set up your own mail server so that you can send emails to your target and make them appear as if they're sent from any email you want.

11
Email Spoofing - Sending Emails as Any Email Account

In this lecture you'll learn how to communicate with the mail server you set up in the previous lecture and send emails to your target and make them appear as if they're sent from any email you want.

12
BeEF Overview & Basic Hook Method

BeEF is a browser exploitation framework that allows us to run a large number of commands on hooked browser.

In this lecture we will have an overview of the interface, how to start the framework and how to create a hook page and hook targets to it.

13
BeEF - hooking targets using MITMf

In this lecture you will learn a more advanced method of hooking your target to BeEF, you will learn how to hook targets using MITMf using the --inject plugin, this will not require any user interaction and therefore its more reliable.

14
BeEF - Running Basic Commands On Target

In this lecture you learn how to run some basic commands on the target machine using beef, so you'll learn how to run any Javascript code, get a screenshot of the page they're browsing and redirect them to any page you want.

15
BeEF - Stealing Credentials/Passwords Using A Fake Login Prompt

In this video you will learn how to use beef to display a fake login dialog to the target user and steal the password they enter, dialogs can be made for facebook, youtube, microsoft or you can even create your own using the custom option.

16
BeEF - Gaining Full Control Over Windows Target

In this video we will use BeEF to create a fake notification bar telling the user that there is a new update, the update is actually a backdoor, so once they install that update we will gain full control over the target machine.

17
Detecting Trojans Manually

This lecture will show you how to analyse files and connections to detect the trojans we created in previous videos even though they are not detectable by anti-virus programs.

18
Detecting Trojans Using a Sandbox

This lecture will show you how to use a sandbox to detect the trojans we created in previous videos even f they are not detectable by anti-virus programs.

You can view and review the lecture materials indefinitely, like an on-demand channel.
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don`t have an internet connection, some instructors also let their students download course lectures. That`s up to the instructor though, so make sure you get on their good side!
4.5
4.5 out of 5
38529 Ratings

Detailed Rating

Stars 5
21584
Stars 4
12832
Stars 3
3463
Stars 2
447
Stars 1
174