The Course
This course is designed for beginners who want to enter the world of cybersecurity and ethical hacking from the ground up. You will learn the essential basics such as networking concepts and different operating systems like Linux and Windows, which will help you understand the environment you’ll be working in.
You will also get familiar with reconnaissance (Recon), which is the first phase of gathering information about targets in an organized way.
You will learn the methodology of penetration testing in a practical and structured manner, so you can work effectively and discover vulnerabilities systematically.
A very important part of the course covers Client-Side vulnerabilities that affect the end user, as well as Server-Side vulnerabilities that impact servers and backend applications.
Curriculum
- Before we Start! How to Learn Vulnerabilities? (12:43)
- HTML Injection & (XSS) Cross-site scripting - part 1 (38:07)
- (XSS) Cross-site scripting - part 2 (43:18)
- (XSS) Cross-site scripting - part 3 (21:41)
- CSP & WAF intro (38:40)
- HTML Injection & XSS - Quiz
- HTML Injection - Writeups & Reports (26:58)
- XSS - Writeups & Reports
- Cross-Site requests, SOP , CORS - intro (33:21)
- (CSRF) Cross-site Request Forgery - Part 1 (55:29)
- (CSRF) SameSite , Preflight Request and others - Part 2 (43:49)
- CSRF - Quiz
- (CORS) Cross-origin Resource Sharing Misconfiguration (51:44)
- CORS misconfiguration - Quiz
- Before we Start! How to Learn Vulnerabilities? (12:43)
- Authentication vs Authorization & Access Control Types (29:36)
- Attacking Access Control - intro (25:13)
- Lab - IDOR vulnerability (35:36)
- IDOR - Writeups & Reports (30:21)
- IDOR - Quiz
- Labs - Privilege Escalation (66:29)
- Privilege Escalation - Writeups & Reports (38:26)
- Privilege Escalation - Quiz
- Logic Bugs - part 1 (38:58)
- Logic Bugs - Writeup (21:20)
- Logic Bugs - Quiz