Welcome to my comprehensive course on Network Hacking! In this course, you will start as a beginner with no previous knowledge about penetration testing or hacking.
This course is focused on the practical side of penetration testing without neglecting the theory behind each attack. Before jumping into penetration testing, you will first learn how to set up a lab and install needed software to practice penetration testing on your own machine. All the attacks explained in this course are launched against real devices in my lab.
The course is structured in a way that will take you through the basics of linux, computer systems, networks and how devices communicate with each other, then you will learn how to exploit this method of communication to carry out a number of powerful attacks.. This course will take you from a beginner to a more advanced level.
The Course is Divided into three main sections:
Pre-connection: in this section we still don’t know much about penetration testing , all we have is a computer and a wireless card connected to it, you will learn how to start gathering information using your wi-fi card and you will learn a number of attacks that you can launch without the need to know the password such as controlling all the connections around you (ie: deny/allow any device from connecting to any network), you will also learn how to create a fake access point to attract users to connect to it and capture any important information they enter such as usernames and passwords.
Gaining Access: Now that you have gathered information about all the networks around you, and found your target, you will learn how to crack the key that the target uses. In this section you will learn a number of methods to crack WEP/WPA/WPA2 encryption.
Post Connection: Now you have the key to your target network and you can connect to it. in this section you will learn a number of very powerful attacks that you can launch against the network and the connected clients, these attacks will allow you to gain access to any account accessed by any client connected to your network, read all the traffic used by these clients (images , videos , audio passwords …etc), and gain full control over any client in your network . After that you will learn how to detect these attacks and protect yourself and your network against them.
All the attacks in this course are practical attacks that work against any wireless enabled device , ie: it does not matter if the device is a phone , tablet laptop …etc. These attacks also work against all operating systems (Windows, OSX, Linux IOS, Android …ect.). Each attack is explained in a simple way first so that you understand how it actually works, so first you will learn the theory behind each attack and then you will learn how to carry out the attack using Kali Linux.
Note: All the videos in this course are downloadable.
NOTE: This course is totally a product of Zaid Sabih and No other organization is associated for certification exam for the same. Although, you will receive Course Completion Certification from Udemy, apart from that No OTHER ORGANIZATION IS INVOLVED.
What are the requirements?
Basic IT skills
Wi-Fi card (preferably one that supports injection)
Kali Linux (can be download for free from http://www.kali.org/downloads/)
What am I going to get from this course?
50 detailed videos about practical attacks against Wi-Fi networks
A number of practical attacks that can be used without knowing the key to the target network
Control connections of clients around you without knowing the password.
Gather detailed information about clients and networks like their OS, opened ports …etc.
Crack WEP/WPA/WPA2 encryptions using a number of methods.
ARP Spoofing/ARP Poisonning
Launch Various Man In The Middle attacks.
Gain access to any account accessed by any client in your network.
Sniff packets from clients and analyse them to extract important info such as: passwords, cookies, urls, videos, images ..etc.
Detect ARP poisoning and protect your self and your network against it.
You will be able to use more than 20 penetration testing tools such as ettercap, wireshark, aircrack-ng suit …etc.
Combine individual attacks to launch even more powerful attacks.
What is the target audience?
Anybody who is interested in learning about network penetration testing
Anybody interested into learning how to protect networks from hackers.
Introduction & Course Outline
|Section 1: Preparation|
Option 1 – Installing Kali Linux As a Virtual Machine
Option 2 – Installing Kali Using ISO
Kali Linux Overview
Updating Kali Linux (optional)
Installing Windows As a Virtual machine
|Section 2: Introduction and Network Basics|
What is MAC Address & how to change it
Wireless modes (Managed & Monitor mode)
Enabling monitor mode in Kali 2
Enabling Monitor Mode Using airmon-ng (method 2)
|Section 3: Pre-Connection Attacks|
Packet Sniffing Basics Using Airodump-ng
Targeted Packet Sniffing Using Airodump-ng
Deauthentication Attack (Disconnecting Any Device From The Network)
Creating a fake Access Point – theory
Creating a fake Access Point – Practical
Creating a Fake AP Using Mana-Toolkit
|Section 4: Gaining Access|
Gaining Access Introduction
WEP Cracking – Theory Behind Cracking WEP Encryption
WEP Cracking – Basic Case
WEP Cracking – Fake Authentication
WEP Cracking – ARP Request Reply Attack
WEP Cracking – Chopchop Attack
WEP Cracking – Fragmentation Attack
WPA Cracking – Introduction
WPA Cracking – Exploiting the WPS Feature
WPA Cracking – Theory Behind Cracking WPA/WPA2 Encryption
WPA Cracking – How to Capture the Handshake
WPA Cracking – Creating a Wordlist
WPA Cracking – Cracking the Key using a Wordlist Attack
WPA Cracking – Cracking the Key Quicker using a Rainbow Table
WPA Cracking – Quicker Wordlist Attack using the GPU
Securing Your Network From The Above Attacks
How to Configure Wireless Security Settings To Secure Your Network
|Section 5: Post Connection Attacks|
Post Connection Attacks Introcution
Information Gathering – Discovering Connected Clients using netdiscover
Gathering More information using Autoscan
Even More detailed information gathering using nmap
MITM – ARP Poisoning Theory
MITM – ARP Poisonning Using arpspoof
MITM – ARP Poisonning Using MITMf
MITM – Bypassing HTTPS
MITM – Session Hijacking
MITM – DNS Spoofing
MITM – Capturing Screen Of Target & Injecting a Keylogger
MITM – Hooking Clients To Beef & Stealing Passwords
MITM – Wireshark Basics
MITM – Analysing Packets Using Wireshark
Creating an Undetectable Backdoor
Listening For Incoming Connections
Creating a Fake Update & Hacking Any Client in the Network
Wi-fEye – Launching all the above attacks automatically
|Section 6: ARP Poisonning Detection & Security|
Detecting ARP Poisoning Attacks
Detecting Suspicious Activities using Wireshark
Zaid Sabih, Ethical Hacker
My name is Zaid Al-Quraishi , I am an ethical hacker, pentester and a computer scientist. I just love hacking and breaking the rules, but don’t get me wrong as I said I am an ethical hacker.
I have a very good experience in ethical hacking. I started making video tutorials since 2009 in an ethical hacking website (iSecuri1ty), I received very good feedback for my tutorials which lead to promoting me as an editor in the website. I also work in the penetration testing team of iSecur1ty.
In 2013 I started teaching my first course online in the training center in iSecur1ty, again this course received amazing feedback for learners, which motivated me to create an English version of this course.
The english course was the most popular and the top paid course in Udemy for almost a year, again the feedback was amazing, therefore I decided to make more courses on ethical hacking, so I released a number of other courses which are doing just as good as that one.
My method of teaching is mostly by example, so I usually start by explaining the theory behind each technique, then I show you how it actually works in a real life situation.
iSecur1ty LLC, Security solutions company
iSecur1ty is a security solutions company based on Jordan , iSecur1ty provide high quality security solutions for companies and individuals and provide high quality information security courses to improve your security experience.