4.61 out of 5
2448 reviews on Udemy

Learn Network Hacking From Scratch (WiFi & Wired)

Learn how to hack both WiFi and wired networks like black hat hackers, and learn how to secure them from these attacks.
Zaid Sabih
34,334 students enrolled
English [Auto-generated]
60+ detailed videos about practical networks attacks
Control connections of clients around you without knowing the password.
Crack WEP/WPA/WPA2 using a number of methods.
Hack any computer on the same network.
Intercept data and spy on all on the network
Gather detailed information about clients and networks like their OS, opened ports ...etc.
A number of practical attacks that can be used without knowing the key to the target network
ARP Spoofing/ARP Poisonning
Launch Various Man In The Middle attacks.
Sniff packets from clients and analyse them to extract important info such as: passwords, cookies, urls, videos, images ..etc.
Detect ARP poisoning and protect your self and your network against it.
You will be able to use more than 20 penetration testing tools such as ettercap, wireshark, aircrack-ng suit ...etc.
Combine individual attacks to launch even more powerful attacks.

Welcome to my comprehensive course on Network Hacking! In this course, you will start as a beginner with no previous knowledge about penetration testing or hacking and by the end of it you’ll be at an intermediate level being able to hack into networks and connected devices like black-hat hackers, not only that but you’ll also learn how to secure networks from hackers.

This course is focused on the practical side of penetration testing without neglecting the theory. Before jumping into hacking you will first learn how to set up a lab and install needed software (works on Windows, Mac OS X and Linux), then the course is structured in a way that will take you through the basics of linux, computer systems, networks and how devices communicate with each other, then you will learn how to exploit this method of communication to carry out a number of powerful attacks.

The Course is Divided into three main sections:

  1. Pre-connection attacks: In this section you will learn about how networks work, how devices communicate with each other and how the information is transferred in a wireless networks. You will also learn about basic terminology, what is a channel ? MAC address ? what is managed mode ? What is monitor mode  and how to enable it ? what is sniffing and what is it limited to ? so in this section we still don’t know much about penetration testing , all we have is a computer and a wireless card connected to it, you will learn how to start gathering information using your wi-fi card (packet sniffing) and you will learn  how to control connections around you (ie: deny/allow devices from connecting to networks) even without knowing the password of the target network.
  2. Gaining Access: Now that you gathered information about the networks around you, in this section you will learn a number of methods to crack the key and get the password to your target network weather it uses WEP, WPA or even WPA2.
  3. Post Connection attacks: Now that you have the key, you can connect to the target network, in this section you will learn a number of powerful techniques that allow you to gather comprehensive information about the connected devices, see anything they do on the internet (such as login information, passwords, visited urls, images, videos ….etc), redirect requests, inject evil code in loaded pages and even gain full control over any client in your network! All the attacks here work against both wireless and wired networks. You will also learn how to create a fake WiFi network, attract users to connect to it and use all of the above techniques against the connected clients.

All the attacks in this course are practical attacks that work against any wireless enabled device, ie: it does not matter if the device is a phone , tablet laptop …etc. These attacks also work against all operating systems (Windows, OSX, Linux IOS, Android …ect.).  in each technique you will understand the theory behind it and how it works, then you’ll learn how to use that technique in a real life scenario, so by the end of the course you’ll be able to modify these techniques or combine them to come up with more powerful attacks and adopt them to different scenarios and different operating systems.

With this course you’ll get 24/7 support, so if you have any questions you can post them in the Q&A section and we’ll respond to you within 15 hours.

NOTE: This course is created for educational purposes only and all the attacks are launched in my own lab or against devices that I have permission to test.

Introduction & Course Outline

Welcome to the course, this lecture will give you a full outline of the structure of the course, and will give you an over view of what will you learn in each section.

Preparation - Setting Up The Lab

Lab Overview & Needed Software

In this course, we will be using a number of operating systems, Kali for hacking and a victim or target machine, in this section you will learn how to install these machines as virtual machines inside your current operating system, this allow use to use all of the machines at the same time, it also completely isolates these machines from your main machine therefore your main machine will not be affected if anything goes wrong.

This lecture will give you an overview of the lab that we will need to set up for this course.

Installing Kali 2019 As a Virtual Machine

This lecture will give you an overview of what software you need to install for this course, and how it can be installed.

You will also see how to install Kali as a virtual machine.

Creating & Using Snapshots

In this lecture, you will learn how to store the current state of the virtual machines and how to use these restore points.

Kali Linux Overview

In this lecture we will have a basic look on Kali linux just to get you comfortable with using it.

You will also learn how to connect your external wifi card to the virtual machine, this is extremely important for future videos.

The Linux Terminal & Basic Commands

Network Basics

Network Basics

In this lecture we shall talk about some basics that we need to understand before we can start learning how to test network's security.

Connecting a Wireless Adapter To Kali

This video will teach you how to connect a USB device to Kali, as an example I will be connecting a wireless adapter to it so I can interact with wireless networks and try to hack them form Kali.

MAC Address - What Is It & How To Change It

In this lecture you shall learn what do mean by MAC address, what are they used for and how to change your MAC address.

Wireless Modes (Managed & Monitor mode)

This lecture will clarify why is it possible to capture any packet around us even if it's not directed to our device, you will learn about two wireless modes: monitor and managed mode, you shall learn what is the difference between them, when do we use each of them and how to correctly enable monitor mode on your wireless card.

Pre-Connection Attacks

Packet Sniffing Basics Using Airodump-ng

This is the first lecture in the "pre connection section", in this lecture you will learn how to use airodump-ng to see all the access points and associated clients that are within your wireless range and gather information about them.

WiFi Bands - 2.4Ghz & 5Ghz Frequencies

In this lecture you will learn what are the 2 bands used on WiFi networks and how to use airodump-ng to capture data sent over these bands

Targeted Packet Sniffing Using Airodump-ng

In this lecture , we shall learn how to launch airodump-ng on a specific AP , and store all packets in a capture file.

Deauthentication Attack (Disconnecting Any Device From The Network)

Deauthentication attacks allow us to disconnect (disassociate) any connected client to any network that is within our wifi range even if the network uses encryption (such as WEP/WPA/WPA2).

Gaining Access

Gaining Access Introduction

Welcome to this section of the course , in this section we shall learn how to break WEP/WPA/WPA2 encryption and determine the network key.

Gaining Access - WEP Cracking

Theory Behind Cracking WEP Encryption

This lecture explains the weaknesses in WEP encryption and how we can use these weaknesses to break it.

Basic Case

In this video we shall learn the basics of cracking WEP encryption , the target is a WEP encrypted network with active clients.

Associating With Target Network Using Fake Authentication Attack

In this lecture we shall learn the theory behind cracking WEP encrypted APs with no or idle clients.

To do this we shall learn three methods of packet injection, but before we can inject packets into the traffic we need to authenticate our wifi card with the target AP so that it does not ignore our requests as AP's only accept packets from associated devices, therefore we shall learn how to fake authenticate our wifi card with the target AP so that it starts accepting packets from us.

Packet Injection - ARP Request Reply Attack

This is the first method of cracking idle or client less AP's that we shall learn .

In this method , after successfully associating with the target AP , we will wait for an ARP packet , we will then capture this packet and inject it into the traffic , this will force the AP to generate a new ARP packet with a new IV , we capture this new packet and inject into the traffic again , this process is repeated until the number of IV's captured is sufficient enough to crack the key.

Packet Injection - Korek Chopchop Attack

This is the 2nd method of cracking idle or client less AP's.

In this method we will capture an ARP packet and attempt to guess its key stream and use it to forge a new packet (using packetforge-ng) ,then we can inject this new forged packet into the traffic to generate new IV's.

Packet Injection - Fragmentation Attack

This is the 3rd method of cracking idle or client less AP's.

The goal of this method is to obtain 1500 bytes of the PRGA (pseudo random generation algorithm) , this can be used to forge a new packet which can be injected into the traffic to generate new IV's.

Gaining Access - WPA/WPA2 Cracking

Introduction to WPA / WPA2 Cracking

This is an introduction to WPA/WPA2 , we shall learn what is the main difference between WPA and WEP and why WPA is more difficult to crack.

Exploiting the WPS Feature

In this lecture we shall learn how to exploit the WPS feature to crack WPA/WPA2 encrypted AP's without a wordlist attack and without the need to any connected clients.

How to Capture a Handshake

In this lecture we shall learn how to capture the handshake from the target AP.

Creating a Wordlist / Dictionary

To crack WPA/WPA2 we need to use a wordlist attacks , you can download ready wordlists from the internet or create your own by following this lecture.

Cracking the Key Using a Wordlist Attack

In this lecture we will use the wordlist created in the previous lecture to crack the WPA key using aircrack-ng.

Cracking the Key Quicker using a Rainbow Table

Computing the PMK is slow, and we only need the wordlist and the essid of the target AP to compute it, therefore we can save time and compute the PMK for our wordlist while waiting for the handshake. This lecture shows how to create a database of ready PMK's for the target AP , so that the cracking process would be much quicker once we capture the handshake.

Quicker Wordlist Attack using the GPU

GPU's are faster than CPU's , there for if you have a powerful GPU you can use hashcat to crack the WPA/WPA2 key using the GPU, this would be much quicker than using aircrack-ng which uses the CPU.

Gaining Access - Security & Mitigation

Securing Your Network From The Above Attacks
How to Configure Wireless Security Settings To Secure Your Network

In this video you will learn how to access the settings page for your router and change the settings to increase the security of your wireless network.

Post Connection Attacks

Post Connection Attacks Introduction

This lecture is an introduction to the last section of this course, it will give you an outline of what we shall learn in this section and some important notes.

Installing Windows As a Virtual machine

In this lecture you will learn how to set up a windows virtual machine so that we can try and hack into it to practice penetration testing.

Post Connection Attacks - Information Gathering

Discovering Connected Clients using netdiscover

Gathering information is one of the most important steps in penetration testing. In this lecture we will learn how to use netdiscover to discover connected devices to our network.

Gathering More Information Using Zenmap

In this lecture we shall learn how to use zenmap (the GUI for nmap) to discover all connected devices and gather detailed information about these devices, such as their operating system, open ports and even services using these ports.

Gathering Even More Information Using Zenmap

In this lecture we shall learn how to use zenmap (the GUI for nmap) to discover all connected devices and gather detailed information about these devices.

Post Connections Attacks - Man In The Middle Attacks (MITM)

ARP Poisoning Theory

In this video we shall learn about one of the most dangerous and effective attacks that you can launch on a network; (Man In The Middle Attacks) , we shall learn the theory behind ARP poisoning and why it is it so dangerous and effective.

ARP Poisoning Using arpspoof

In this lecture we will learn how to use arpspoof to do a basic ARP poisoning attack and redirect the flow of packets in the network. 

Bettercap Basics

This video shows you how to properly install bettercap on Kali Linux, and gives you a basic overview on how to start it and interact with it.

ARP Poisoning Using Bettercap

In this lecture we shall have a look on Man In The Middle Framework , how to use it to ARP poison a target client and sniff usernames and passwords from that target.

Spying on Network Devices (Capturing Passwords, Visited Websites...etc)

In this lecture you'll learn how to configure and use the sniff module in bettercap to spy on devices on the same network, so you'll learn how to see all urls they load, images, usernames, passwords and more!

Creating Custom Spoofing Script

In this lecture you'll learn how to create your own MITM scripts, also known as bettercap caplets, in this example you'll learn how to create a caplet to automatically spoof clients on your network to place you in the middle of the connection and start a sniffer to spy on these clients and see all the data they send/receive including usernames and passwords.

Understanding HTTPS & How to Bypass it

This lecture will teach you what HTTPS is and how to properly configure Bettercap to bypass HTTPS so you can see data sent to and from more secure websites that use HTTPS by default.

Bypassing HTTPS

In this lecture we shall learn how to bypass HTTPS/SSL so that we can sniff passwords from HTTPS enabled web pages such as Linkedin.

Bypassing HSTS

Really big websites such as Facebook and Twitter use Strict Transport Security (HSTS),  modern browsers come with a list of websites that they can only browse as HTTPS, so when we use the method shown in previous lectures the browser will either refuse to load HSTS websites OR load them over HTTPS.

In this lecture you'll learn how to use a custom version of the hstshijack caplet to partially bypass HSTS, this will allow you to capture data sent to and from websites that use HSTS such as Facebook.

DNS Spoofing - Redirecting Requests From One Website To Another

In this video we shall learn how to control DNS requests made by the target client. This can be very useful in many cases.

Injecting Javascript Code

In this lecture you will learn how to inject Javascript code into the target browser, this is vey dangerous as it allows us to run a large number of attacks using javascript codes (more on this later), in this lecture we'll focus on injecting a simple javascript code.

Wireshark - Basic Overview & How To Use It With MITM Attacks

Wireshark is a network protocol analyser, in this lecture we will have a basic overview on it, you will learn why is it useful and how to use it with MITM attacks or use it to analyse a capture file that contains data that you already sniffed.

Wireshark - Sniffing & Analysing Data

I this lecture you will learn how to use Wireshark to sniff data (traffic) sent/received by any client in your network. You will also learn how to analyse this data, filter HTTP traffic and find useful information such as the websites visited, sent requests and more!

Wireshark - Using Filters, Tracing & Dissecting Packets

In this lecture we will continue using Wireshark, you will learn more methods to analyse the captured data, you'll learn how to find packets that contain specific information, how to capture logins (usernames and passwords), and how to capture the cookies if the person has already logged in, we will have examples on Hotmail and Dailymotion.

Wireshark - Capturing Passwords & Anything Sent By Any Device In The Network

In this lecture you'll learn how to filter sniffed data and extract useful information such as usernames and passwords.

Creating a Fake Access Point - Theory

Fake access points can be handy in many scenarios , one example is creating an open AP , this will attract a lot of clients , many of which will automatically connect to it. Then we can sniff all the traffic created by the clients that connect to it , and since its open , the traffic will not be encrypted !

This lecture will explain the theory behind creating a fake AP and what do we need to make it work.

Creating a Fake AP Using Mana-Toolkit

In this lecture you will learn an easier way to create a fake AP using a tool called Mana-Toolkit.

Post Connection Attacks - Gaining Full Control Over Devices On The Same Network

Bonus - Installing Veil 3.1

In this lecture you will learn how to download and install Veil Framework.

Bonus - Veil Overview & Payloads Basics

This lecture will give you an overview on Veil Framework and its basic commands.

You will also learn what is a payload and the different types of payloads that can be generated with Veil. 

Bonus - Generating An Undetectable Backdoor Using Veil 3

In this lecture you will learn how to create a backdoor that is not detectable by antivirus programs, this is very important in client side attacks as we will be using this backdoor in future videos to try and gain control over the target system.

Bonus - Listening For Incoming Connections
Bonus - Using A Basic Delivery Method To Test The Backdoor & Hack Windows 10

Finally we will test the backdoor that we generated on a Windows machine and make sure that it works as expected.

Creating a Fake Update & Hacking Any Client in the Network

This lecture will teach you how to gain full access over a target computer by serving it a fake update for an existing program, once the target user installs the update you will gain full access to their computer.

Note: you need to be the man in the middle for this method to work.


Note: The latest version of evilgrade does not work properly, so don't download evilgrade using the git clone command in the installation commands, instead download it from the following link:


Meterpreter Basics - Interacting Wit Hacked Clients

This lecture will show you the basics of metasploit's meterpreter, you will learn how to use it to access the file system of the target computer, upload, download, edit ....etc.

You'll also learn how to migrate to safer process and more.

ARP Poisoning Detection & Security

Detecting ARP Poisoning Attacks

In this lecture we shall learn two methods to detect ARP poisoning attacks.

Detecting Suspicious Activities using Wireshark

In this lecture we shall learn how to use Wireshark to detect ARP Poisoning attacks and other suspicious activities in the network, we will also learn how to protect against ARP Poisoning attacks.

Bonus Section

Bonus Lecture - What's Next?
You can view and review the lecture materials indefinitely, like an on-demand channel.
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don`t have an internet connection, some instructors also let their students download course lectures. That`s up to the instructor though, so make sure you get on their good side!
4.6 out of 5
2448 Ratings

Detailed Rating

Stars 5
Stars 4
Stars 3
Stars 2
Stars 1