SEC 335: Ethical Hacking and Penetration Testing Landing Doc

Module 1: Passive Recon

Assignment 1.1 Rules of engagement

Activity 1.1 Ethical hacking Discussion Activity

Assignment 1.2 Google Remote Desktop Access

Activity 1.2 Passive Recon Group Activity

Module 2: Active Recon

Activity 2.1 Host Directory

Assignment 2.1 Port Scanning 1

Assignment 2.2 Port Scanning 2

Module 3: DNS

Class Activity 3.1 DNS Enumeration

Assignment 3.1 Powershell and DNS

Assignment 3.2 DNS uses TCP and UDP

How to Push Code to Github

SED Command

AWK Command

GREP Command

Module 4: Manual Vulnerability Detection

Lecture - Vulnerability Detection

Activity 4.1: Exploiting Cupcake

Assignment 4.1 - "Hacking" Laws

Module 5: Password Guessing

Lecture

Lab 5.1: Password Guessing

Module 6: Cracking Passwords

Lecture

Activity 6.0 Pre-lab

Lab 6.1: Password Cracking - Linux

Installing Kali on VirtualBox

John The Ripper

Hashcat

Github Files Week 6

Module 7: Expoliting Pippin - File Upload Vulnerabilities, WebShells and Database

Assignment 7.1 Webshells

Lab 7.1 - Exploiting Pippin

Module 8: Reverse Shells

Class Activity 8.1 - Weevely

Class Activity 8.2 - Reverse Shells

Module 9: SQLi and Exploiting Gloin

Class Activity 9.1 SQLi Review

Lab 9.2 Exploiting Gloin

Module 10: Permission Errors and Exploiting Nancurinir

Class Activity 10.1 - Linux - Permission Vulnerabilities

Lab 10.2 - Exploiting Nancurinir