Kali Linux for Advanced Pen Testing and Ethical Hacking
2h 24mAdvanced2021-12-15
Authors
Malcolm Shore
Cybersecurity Expert, Former Director of GCSB
Course details
Kali Linux is the penetration-testing professional's main tool, and includes hundreds of modules for scanning, exploitation, payloads, and post exploitation. In this course, Malcolm Shore teaches you advanced pen testing with Kali, including stealthy testing, privilege escalation, and pivoting. Learn how to use the basic toolset and extend Kali, integrating native exploits into the Metasploit environment. Find out how to generate and maintain a variety of shells, including Python and C++, and discover how to collect and use credentials. Get an introduction to the online Hack The Box and Offensive Security labs where you can practice your pen-testing skills. Malcolm details the advanced customization of exploits and achieving root access through a sustainable shell. This course covers many of the key objectives needed to pass the Offensive Security Certified Professional (OSCP) exam, and will appeal to all ethical hackers and pen testers, as well as general IT professionals.
Skills covered
Penetration TestingSecurity TestingLinuxCybersecurityOpen SourceDeep Dive (X:Y)
Concepts
0. Introduction
- 01 - Using Kali Linux as the basis for advanced penetration testing
- 02 - What you should know
- 03 - Disclaimer
1. Kali Basics
- 04 - Testing with Kali Linux
- 05 - Understanding Kali deployments
- 06 - Preparing your toolbox
- 07 - Preparing to use exploits for testing
- 08 - Managing the Kali menu
- 09 - Using the LinkedIn Learning penetration testing lab
2. System Shells
- 10 - Introduction to shells
- 11 - Exploring Kali webshells
- 12 - Weeving a shell
- 13 - Generating shellcode with msfvenom
- 14 - Injecting images with jhead
- 15 - Using shellcode in exploits
3. Exploiting Targets from Kali
- 16 - Exploiting systems with Kali
- 17 - Exploiting with Python
- 18 - Exploiting with Perl
- 19 - Exploiting with C
- 20 - Exploiting with CPP
4. Passwords
- 21 - Obtaining Windows passwords
- 22 - Obtaining Linux passwords
5. Exploiting the Metasploitable Server
- 23 - Targeting Metasploitable
- 24 - Exploiting VSFTPD
- 25 - Exploiting with ProFTPD
- 26 - Exploiting Tomcat
- 27 - Exploiting IRC
- 28 - Exploiting the distributed compile system
- 29 - Exploiting network files
- 30 - Hiding in plain sight
- 31 - Escalating to root
6. End-to-End Testing
- 32 - Hacking the box
- 33 - Exploiting rejetto
- 34 - Exploiting the Devel
- 35 - Time to exploit Cronos
- 36 - Cronos revisited - Getting to the root
- 37 - Using a nightmare escalator
Conclusion
- 38 - Next steps
Related courses
- Creating Professional Penetration Test Reports: A Hands-On Guide for Cybersecurity Professionals
- Machine Learning for Red Team Hackers
- Hashcat Essential Training
- Penetration Testing and Ethical Hacking
- Foundations of Physical PenTesting
- Red Team Operator Series
- Fine-Tuning LLMs for Cybersecurity: Mistral, Llama, AutoTrain, AutoGen, and LLM Agents
- Leveraging AI for Penetration Testing