Course Content
Understand the basics of ethical hacking and why it is important
Understanding the basics of ethical hacking helps students learn how hackers think and how cyber attacks happen. It teaches the importance of protecting systems, finding security weaknesses before criminals do, and keeping personal and organizational data safe. Ethical hacking is important because it helps build a safer digital world and prepares students for future careers in cybersecurity.
0/5
Introduction to Ethical Hacking & Cybersecurity
Networking Fundamentals for Hackers
Linux for Hackers
Cryptography & Security Protocols
Understand the basics of ethical hacking
00:02:00
Learn about Reconnaissance & Footprinting
Students will learn about Reconnaissance is the first and most critical phase of any penetration test. This topic teaches students how to gather intelligence about a target legally — using both passive (non-intrusive) and active methods. Master this topic and you will think like a real attacker.
0/5
Passive Reconnaissance & OSINT
Active Reconnaissance & DNS Enumeration
Social Engineering & Phishing
Vulnerability Assessment
Reconnaissance & Footprinting
00:02:00
Explore Scanning, Exploitation & Post-Exploitation
This is the most technical and exciting topic of the course. Students will perform actual attack simulations in a controlled lab environment using industry-standard tools. Always practice ONLY on systems you own or have explicit permission to test.
0/5
Network Scanning & Port Analysis
Exploitation with Metasploit Framework
Password Attacks & Privilege Escalation
Wireless Hacking & Network Attacks
Scanning, Exploitation & Post-Exploitation
00:02:00
Understand the Web Application Hacking & Career Preparation
Web application vulnerabilities are the #1 source of security breaches in modern organizations. This final topic teaches the OWASP Top 10 attacks, secure code review, and everything needed to land your first cybersecurity job or internship.
0/4
Web Application Hacking — OWASP Top 10
Burp Suite & API Security Testing
Report Writing & Documentation
Career Path & Interview Preparation
Introduction to Ethical Hacking for Students

OWASP Top 10 — 2021

#

Vulnerability

Description

Prevention

A01

Broken Access Control

Users access unauthorized resources

Role-based access, server-side checks

A02

Cryptographic Failures

Sensitive data exposed due to weak crypto

Use TLS, strong hashing (bcrypt)

A03

Injection (SQLi, OS)

Untrusted input executed as commands

Parameterized queries, input validation

A04

Insecure Design

Missing security controls in design phase

Threat modeling, secure SDLC

A05

Security Misconfiguration

Default passwords, open cloud storage

Hardening guides, config reviews

A06

Vulnerable Components

Using outdated libraries with CVEs

Regular patching, dependency scanning

A07

Auth Failures

Weak passwords, session management flaws

MFA, secure session tokens

A08

Data Integrity Failures

Deserialization, CI/CD pipeline attacks

Verify signatures, code signing

A09

Logging Failures

No monitoring of security events

Centralized logging, SIEM alerts

A10

SSRF

Server fetches attacker-controlled URLs

Whitelist allowed URLs, block internal IPs

 

SQL Injection — Deep Dive

  • Classic: ‘ OR ‘1’=’1 — Always-true condition to bypass login
  • Union-Based: UNION SELECT username, password FROM users–
  • Blind SQLi: No visible output — infer data from true/false responses
  • Tool: sqlmap -u ‘http://target/page?id=1’ –dbs — Automated SQLi detection

 

Lab: Install DVWA on your Kali VM. Complete all exercises at ‘Low’ security level first: SQLi, XSS, CSRF, File Upload. Then repeat at ‘Medium’ and ‘High’ security levels.
Previous
Next

Social Links

Be a Mentor

    Be Our Skilling Partner