Ethical Hacking
Keval Thakkar
June 28, 2020
#ethical_hacking #cyber_security #suggestions #helping_hands
#career_in_the_filed_of_cyber_security
Declaimer: Only for educational purpose
Subject: Self study content for cyber security (Ethical hacking)
Resources: For beginner to medium level.
Hey folks, as I said in my previous post (To share Resources for self-study of cyber security “ethical hacking” ) Here I am going to provide resources and guidance, how and where to start. Its little bit long post, so take your time to read and also copy paste it in your system (save offline).
previous post link: https://www.facebook.com/groups/xdaotgroup/?post_id=1851372341686835
Let’s understand all the important domain of cyber security.
1. Web security(that run on your browser ex. Websites)
2. Network security(router, switches, server etc.)
3. Cloud security(AWS, AZURE, IBM cloud etc.)
4. Internet of things (IoT) security(smart devices ex. Watch, health measuring devices, car control system, smart light, ac, fan etc.)
5. Forensics(everything about monitor & investigation of electronic devices that have some memory for logs and other purpose)
6. Mobile security (Android and ios)
7. SCADA security(network & devices used in controlling power grid, petrol pump, nuclear plant, MRI machine etc.)
8. Information security management system “ISMS” (Total theory : ISO standards, Risk management & compliance)
9. Cyber Law(this is not the domain of cyber security but we need this because we are going for ethical, we should know our law. IT ACT 2000, Electronics Evidence ACT) mostly hum forensics ke sath cyber law ko pdhte h in every country.
Now you are thinking itna sab kuch padhna pdega kya ? answer is NO.
What we need to learn cyber security.
1. Laptop/PC (A normal laptop/pc for beginner)
2. Internet
3. Time (most important)
What knowledge required (prerequisite)to learn cyber security.
Nothing, we are here to start from very beginning. But if you have knowledge of computer science, then it surely helps you.
#############################################################
So before going to our cyber security domain what should we know.
1. Basic knowledge of computer (Jo sbko aata h).
2. Introduction & fundamental of cyber security
· https://www.cisco.com/c/m/en_sg/partners/cisco-networking-academy/index.html
("Introduction to Cybersecurity " enroll in this for basic overview of cyber security)
· https://www.cyberaces.org/courses.html
(Left Module 3, System Administration, if you face problem to understand )
· Learn 4 pdf’s that I attached in post (or i will share in comment)
Name of pdf’s
1. Fundamental of computer security 1
2. Fundamental of computer security 2
3. Fundamental of computer security 3
4. Fundamental of computer security 4
3. Programming languages (Learn in given order)
https://www.w3schools.com/ & https://www.tutorialspoint.com/codingground.htm
Use above given web sites for coding practice for all given below programming languages.
· C
https://www.learnvern.com/course/advanced-c-in-hindi
· C++
https://www.learnvern.com/course/c-programming-tutorials
· HTML
1. https://www.youtube.com/watch?v=dD2EISBDjWM&list=PLr6-GrHUlVf_ZNmuQSXdS197Oyr1L9sPB
2. https://www.youtube.com/watch?v=UB1O30fR-EE
· Java script
1. https://www.youtube.com/watch?v=PkZNo7MFNFg&list=WL&index=52&t=28s
2. https://www.youtube.com/watch?v=PODgPW-hbfU
3. https://www.javatpoint.com/javascript-tutorial
· Python (Must, learn upto advanced level)
1. https://www.youtube.com/playlist?list=PLwgFb6VsUj_lQTpQKDtLXKXElQychT_2j
2. https://www.youtube.com/playlist?list=PL1A2CSdiySGIPxpSlgzsZiWDavYTAx61d(advanced level)
3. https://courses.cognitiveclass.ai/
· PHP
1. https://www.youtube.com/watch?v=DG0C3Tntl1M&list=WL&index=51&t=212s
2. https://drive.google.com/drive/folders/0ByWO0aO1eI_Md1p5WXpLMFRuVEE?direction=a
· SQL
https://www.youtube.com/watch?v=7S_tz1z_5bA
· List is long 1st learn these seven. Remember programming language me hme expert nhi bnna h (except python, we need this to create scripts) bs basic aana chhaiye, jiise hum koi bhi source code ko samjh sake ki vo kya kr rha h.
· Other languages that need to learn in future (only basics) Ruby, java, Node js, ASP, XML, perl, go, JSON etc.
4. Network (Basic to advanced)
1. https://www.youtube.com/watch?v=VwN91x5i25g&list=PLBlnK6fEyqRgMCUAG0XRw78UA8qnv6jEx(Introduction to Computer Networks)
2. https://www.youtube.com/playlist?list=PLG49S3nxzAnmpdmX7RoTOyuNJQAb-r-gd( Network, security perspective)
3. https://www.youtube.com/watch?v=ZvWn5xBflUs&list=PLYtUYwNCm8ZO_tO2kDpu5WbatLE0ag4Vw(Basic Diffrences)
4. https://www.youtube.com/watch?v=n2D1o2s&list=PLh94XVT4dq02frQRRZBHzvj2hwuhzSByN(CCNA)
5. Packet tracer software Free (For practicing routing protocol) Must to be done. (Video mil jayega bahut sara)
6. Cryptography(Backbone of cyber security, Jo apne browser me security hoti h”HTTPS” vo isi ki wajh se hoti h)
· https://www.youtube.com/watch?v=5jpgMXt1Z9Y(Introduction)
· https://www.youtube.com/watch?v=2aHkqB2-46k&list=PL2jrku ebl3H50FiEPr4erSJiJHURM9BX (Cryptography in detail)
or
· https://www.youtube.com/watch?v=hizBOt3n2sc&list=PL2jykFOD1AWb07OLBdFI2QIHvPo3aTTeu(Cryptography in detail)
7. Kali linux (Specific OS for hacking)
1. https://www.youtube.com/watch?v=gWAzUShVZVU(How to install kali linux in vmware)
2. https://www.youtube.com/watch?v=B9fGYDM_TU4(Basics)
3. https://www.youtube.com/watch?v=lZAoFs75_cs(Basics for hacking)
NOTE: We have to learn above 6 points anyhow, jaroori nhi h ki jo maine link diye hai usi se padhna h, aap khi se bhi pdh sakte ho jo tutorial, website aapko acha lage, bs aapko ye sare topics pdhna h. Aap UDEMY ke paid courses se bhi pdh sakte ho (Best seller dekh ke aur review pdhke buy krna each course price: 420INR)
How to study above mention points.
Start networking & cryptography parallelly and side by side start with languages in given order.
When you complete networking & cryptography then Learn Kali linux basics commands before going to our security part.
When you will complete above mentioned 6 points, then we come to our ethical hacking part.
Now we can talk about our cyber security domains.
Web security & Network security domains are compulsory to all the learners. After that you have to choose your domain where you want to build your career. Choose according to your interest.
Whatever branch you will choose in cyber security, knowledge of web & network security are compulsory.
For example: let’s suppose you have chosen
Internet of things (IoT) security, it includes: web+ network+ cloud
Mobile security, it includes: Web + network
Forensics includes: web + network
We can say that web & network are core others domains are application of these two.
##############################################################
Let’s begin our security part.
###############################################################
Tools used in both network security & web security
Frameworks:
Kali Linux.
Reconnaissance:
Smartwhois, MxToolbox, CentralOps, dnsstuff, nslookup, DIG, netcraft, DNSrecon
Discovery:
Angry IP scanner, Colasoft ping tool, nmap, Maltego, NetResident,LanSurveyor, OpManager
Port Scanning:
Nmap, Megaping, Hping3, Netscan tools pro, Advanced port scannerService Fingerprinting Xprobe, zenmap
Enumeration:
Superscan, Netbios enumerator, Snmpcheck, onesixtyone, Jxplorer, Hyena,DumpSec, WinFingerprint, Ps Tools, NsAuditor, Enum4Linux, nslookup, Netscan
Scanning:
Nessus, GFI Languard, Retina,SAINT, Nexpose
Password Cracking:
Ncrack, Cain & Abel, LC5, Ophcrack, pwdump7, fgdump, John The Ripper,Rainbow Crack
Sniffing:
Wireshark, Ettercap, Capsa Network Analyzer
MiTM Attacks:
Cain & Abel, Ettercap
Exploitation:
Metasploit, Core Impact
NOTE: ye jo sare tools h inko pdhna hi pdega (you can skip paid tools) mostly ye network security ke liye hain, uske liye aap google, youtube aur medium.com ya direct internet pe search krke pdh sakte hai. Bs aapko internet pe search krna aana chahiye.
For example aapko NMAP ke bare me pdhna h to,
Google: Nmap, How to use nmap, how to install nmap in kali linux , why we use nmap, working of namp etc.
Most of the tools given above are preinstalled in kali linux. Those are not installed you have to install it from github or any other sources.
############################################################
1. Web Security
Use DVWA & BWAPP for practice : https://www. hackingarticles .in/configure-web-application-penetration-testing-lab/(In PC)
https://www .hackin garticles .in/web-penetration-testing/
Topics: Need to learn from Internet (Udemy, google, articles like medium, youtube etc.)
1. Burpsuit setup: https://www.youtube.com/watch?v=YCCrVtvAu2I
2. Very good videos: https://www.youtube.com/channel/UC0ZTPkdxlAKf-V33tqXwi3Q/playlists
3. Owasp top 10 & bug bounty practical approach : (Must complete) https://www.udemy.com/course/bug-bounty-hunting-offensive-approach-to-hunt-bugs/(Paid, you can find that video on torrent)
4. Learn in detail: Http & Https, SSL-TLS, TCP hand shake, public & private key concepts, session & cookie management, Active Directory, Kerberos, privilege escalation, SSH, Telnet, Honeypot, Beef framework, Reverse Engineering (Use to make crack software), virustotal.com, list is very long learn these things 1st.
5. https://www.vulnhub.com/(Download and solve CTF (capture the flag)with the help of walkthrough)
6. List of web attacks: Learn and practice it. (Internet pe mil jayega aaram se)
1. SQL injection
2. Cross site scripting
3. Broken identification and session management
4. IDOR
5. Security misconfiguration
6. CSRF
7. remote code execution
8. Sensitive data exposure
9. XML external entities
10. Broken access control
11. using components with known vulnerabilities
12. Missing function level access control
13. Unvalidated redirects and forwards
14. Privilege escalation
15. Denial of services
16. Session fixation
17. Username enumeration
18. Lack of equation in limiters
19. Data tampering
20. Buffer overflow
21. LFI/RFI
22. Unrestricted File upload
23. Weak Cryptographic algorithm
24. stack traces
25. debugging enabled
26. default credentials
27. missing security response header
######################################################################
2. Network security
Security Basics (Important)
https://www.udemy.com/course/comptia-security-certification-sy0-501-the-total-course/(Recommended, its paid course but you can find his video’s on torrent too) Must complete this.
https://alison.com/courses/network-and-security(Free security courses with certificate) Optional
Topics: Need to learn from Internet (Udemy, google, articles like medium, youtube etc.)
1. Metasploit framework (preinstalled in kali)
Use for Remote code execution. (Taking shell of any system (PC/MOBILE))
https://www.hackers-arise.com/metasploit(Introduction)
https://null-byte.wonderhowto.com/how-to/exploit-eternalblue-windows-server-with-metasploit-0195413/
https://medium.com/@leandro.almeida/hack-windows-10-with-metasploit-329c283db99a
2. Wireless pentesting
Wi-fi hacking tools : Airmon-ng, Airodump-ng, Aireplay-ng, Aircrack-ng
https://null-byte.wonderhowto.com/how-to/automate-wi-fi-hacking-with-wifite2-0191739/(Wi-fi hack using tool wifite2)
3. DDOS Attacks (Tools: HULK, Slowloris, LOIC etc)
https://www.softwaretestinghelp.com/ddos-attack-tools/
4. Attacks on networking protocols (DNS, DHCP, RIP, ARP, OSPF etc.)
5. Attacks on OSI layer protocols (7 layer of Open Systems Interconnection)
6. Buffer Overflow (Use POC of buffer overflow, Null-byte and medium to study )
7. Firewall in detail (IDS/IPS, types of firewall, how firewall works, do a free course on udemy: https://www.udemy.com/course/palo-alto-firewalls-installation-configuration-management/ )
NOTE: Web security aap jaldi seekh jaoge, network ke liye thoda time lagega vo dheere dheeere practice ke sath aayega, so nothing to worry about that. Web aur Networking ke maine topics bata diye hain iske bare me aapko pdhna h aur ye sab tabhi aayega ache se jab aapko upr diya gya content (1 to 6) aata hoga.
############################################################
When you complete web & network security then decide a domain for your career, you can continue with web & network security (means you chosen web & network as your domain) in this case you have to learn more attacks & gain more practical knowledge to get the JOB.
After completion of this (Web & Network security), message me I will provide my personal notes that will really help you in getting a job.
I can provide resources for other domains that are left (3. Cloud security, 4. Forensics 5. IoT security 6. Mobile security 7. ISMS 8. SCADA) but there is no need as of now. Take your time (4 to 6 months) to complete web & network security. When you complete above mention things then again PM me with your chosen area of interest. I will guide you further.
The post is already long let’s bind up with some useful guidelines.
1. Cyber security ki filed me job ki koi kami nhi h. In future job aur badhengi, so nothing to worry about that. Bs aapko focus apni studies pe karni h. If you are beginner it will take whole year (6hr/day) to learn these things up to the industry level. In this field you can earn money without job through bug bounty (Find vulnerability and report this to company they will reward you money & hall of fame, some platform where you find bug bounty program are Bugcrowd.com & Hackerone.com)
2. Don’t underestimate the power of Linkedin, I recommend you create ID on Linkedin and add cyber security professionals. At least make 1000 connection (add cyber security people) within two months. Here you can get job & internship opportunities as well as you will aware of current industry needs, attacks, vulnerability & scenario. You can connect with me on linkedin, I could help you there (with your technical doubts & cyber security related questions) : https://www.linkedin.com/in/gaurav-singh-3ab51112a/
Those who are serious to get in cyber security as their career be in touch with me on Linkedin.
3. Here I am giving some links you have to follow this throughout your studies.
· https://gbhackers.com/(Article & news)
· https://thehackernews.com/(News)
· https://www.exploit-db.com/google-hacking-database(Info about exploit & google dorks)
· github.com (Use for repositories and tools )
· https://github.com/alexanderstonec/Top-100-Hacking-Security-E-Books-Free-Download-2019(Cyber security books)
· https://drive.google.com/drive/folders/0BGpLBw_eerlejZuanEwQmh1UTg (Cyber security books)
· https://null-byte.wonderhowto.com/(Hacking articles )
https://www. Hacking articles .in/
· https://medium.com/(Articles related to computer science and others too) how to search : Google “https medium” you will get the medium article related to https.
· https://www.freshercooker.in/(Free & new udemy courses)
·https://github.com/enaqx/awesomepentest/blob/master/README.md(collection of cyber security related resources include books, web & network pentesting)
This is all about from my side as of now. These contents are not enough to be a professional cyber security expert, but its good to start with this. Itna pdhne ke bad aap medium level tak aa jaoge iske bad aap samjh jaoge ki aapko aage kya pdhna hai kaha se pdhna h. Feel free to reach me out on Fcaebook as well as Linkedin (prefer Linkedin).
You can comment your doubts on post.
Now the ball is in your court, start playing GOOD LUCK!
Thank you!