Hacking And Pentesting Testing With Metasploit In Kali Linux
Last updated 2/2019
MP4 | Video: h264, 1280x720 | Audio: AAC, 44.1 KHz
Language: English | Size: 5.13 GB | Duration: 12h 1m
Last updated 2/2019
MP4 | Video: h264, 1280x720 | Audio: AAC, 44.1 KHz
Language: English | Size: 5.13 GB | Duration: 12h 1m
Test and secure your system services to overcome hacker threats and protect your system with Metasploit
What you'll learn
Scan the different services and identify vulnerabilities in your systems
Integrate and use various supporting tools to make Metasploit even more powerful and Precise.
Discover the clever features of the Metasploit framework for launching sophisticated and deceptive client-side attacks that bypass the perimeter security.
Leverage Metasploit capabilities to perform Web application security scanning.
Perform real-life penetration testing on different targets using Metasploit
Perform Privilege Escalation in Machines using advanced commands
Perform Vulnerability assessment and Penetration testing with Metasploit.
Requirements
No prior knowledge about Metasploit is assumed.
Description
Metasploit is a popular penetration testing framework and has one of the largest exploit databases around. It is an essential tool in the penetration tester's arsenal which is used by White Hat, and by Black Hat, hackers.With this step-by-step guide & practical guide, you'll first begin with configuring Metasploit on various platforms to discover weaknesses in the target system and hunt for vulnerabilities. Then, you'll learn about web application security scanning & bypassing anti-virus & clearing traces on the target system after penetrating into the target. Next, you'll explore how exploits and payloads work together to gain access to systems. Moving further you'll learn to attack a remote machine using a group of exploits to gain complete access using Metasploit commands & latest Kali tools.By the end of this course, you'll be an expert in using Metasploit to quickly assess the security posture of systems and networks to reduce the risk of attack.Contents and OverviewThis training program includes 4 complete courses, carefully chosen to give you the most comprehensive training possible.The first course, Learning Metasploit will begin by introducing you to Metasploit and its functionality. Next, you will learn how to set up and configure Metasploit on various platforms to create a virtual test environment. You will also get your hands on various tools and components used by Metasploit. Further, in the video, you will learn how to find weaknesses in the target system and hunt for vulnerabilities using Metasploit and its supporting tools. Next, you'll get hands-on experience carrying out client-side attacks. Moving on, you'll learn about web application security scanning and bypassing anti-virus and clearing traces on the target system post-compromise. This video will also keep you updated with the latest security techniques and methods that can be directly applied to scan, test, hack, and secure networks and systems with Metasploit. By the end of this course, you'll get the hang of bypassing different defences, after which you'll learn how hackers use the network to gain access to different systems.The second course, Beginning Metasploit teaches you the practical implementation of Metasploit. Each section will get you started with Metasploit by enumerating available services, identifying potential weaknesses, and testing vulnerabilities through exploitation. The course will show you how to correctly configure Metasploit and how to troubleshoot potential errors. You will scan the different services to identify vulnerabilities. Finally, you will explore sophisticated, real-world scenarios where performing penetration tests is a challenge. By the end of this course, you will be able to use Metasploit to quickly assess the security structure of systems and networks to reduce risk.The third course, Hands-On Penetration Testing with Metasploit you'll learn how to use Metasploit to enumerate services, identify potential weaknesses, test vulnerabilities through exploitation, and gather evidence for reporting. First, you'll explore several supporting tools on Kali Linux. Next, you'll explore how exploits and payloads work together to gain access to systems. Finally, you'll learn how Metasploit Framework works. By the end of this course, you'll have a better understanding of how to use Metasploit to quickly assess the security posture of systems and networks to reduce the risk of attack.The fourth course, Hands-on Web Penetration Testing with Metasploit 4.x teaches you the practical implementation of Metasploit. Each section will get you started with Metasploit by enumerating available services, identifying potential weaknesses, and testing vulnerabilities through exploitation. The course will show you how to correctly configure Metasploit and how to troubleshoot potential errors. You will scan the different services to identify vulnerabilities. Finally, you will explore sophisticated, real-world scenarios where performing penetration tests is a challenge. By the end of this course, you will be able to use Metasploit to quickly assess the security structure of systems and networks to reduce risk.About the Authors:Sagar Rahalkar is a seasoned information security professional having more than 10 years of comprehensive experience in various verticals of IS. His domain expertise is mainly into breach detection, cybercrime investigations, digital forensics, application security, vulnerability assessment and penetration testing, compliance for mandates and regulations, IT GRC, and much more. He holds a master’s degree in computer science and several industry-recognized certifications such as Certified Cyber Crime Investigator, Certified Ethical Hacker, Certified Security Analyst, ISO 27001 Lead Auditor, IBM certified Specialist-Rational AppScan, Certified Information Security Manager (CISM), and PRINCE2. He has been closely associated with Indian law enforcement agencies for more than 3 years dealing with digital crime investigations and related training and received several awards and appreciation from senior officials of the police and defence organizations in India. Sagar has also been a reviewer and author for various books and online publications.Guglielmo Scaiola lives in IT pro world since 1987, works mainly as a consultant for banking companies. He works as an Architect and System Engineer in complex Active Directory environments and as a Security consultant and carries out activities of Vulnerability Assessment, Pen-Testing, and Red Teaming. HE delivers further training activities in the field of Security and Ethical Hacking. Over the years he has obtained several certifications, including CEH, GPEN, CEI, CHFI, MCT, MCSA, MCSE, Security +, Lead Auditor ISO 27001 and ECSA. He was awarded in 2011 with the "Ec-Council Instructor - Circle of Excellence" and he was 2014 Infrastructure Days Best Speaker. Since 2010 he has been a speaker at WPC Italia and has also given lectures to Bsides Roma, Bsides Milano, Microsoft community days, private forums and other locations.Sunil Gupta is a Certified Ethical Hacker. Currently, he teaches 50,000+ students online in 150+ countries. He is a specialist in the Ethical Hacking and Cyber Security areas. Author strengths – Vulnerability Assessment, Penetration Testing, Intrusion Detection, Risk Identification, Data Analysis, Report, and Briefing.Atil Samancioglu is a best-selling online instructor and has instructed more than 80,000 students on Ethical Hacking. Atil has trained more than 20.000 students on the following Ethical Hacking subjects: Kali Linux, Metasploit, metasploitable, social engineering, Nmap, Man-in-the-Middle attacks, MITM proxy, Beef, Wireshark, Maltego, SQL Injection, XSS, social media safety, VPN server creation, Meterpreter, Ettercap, WPA Enterprise. He currently works as eBusiness Team Leader in a multinational company.
Overview
Section 1: Beginning Metasploit
Lecture 1 The Course Overview
Lecture 2 Fundamentals of Metasploit
Lecture 3 Metasploit Framework Console Commands
Lecture 4 Benefits of Metasploit
Lecture 5 Penetration Testing with Metasploit
Lecture 6 Scanning FTP Services
Lecture 7 Scanning MS SQL Services
Lecture 8 Scanning HTTP Services
Lecture 9 Installing Metasploitable2
Lecture 10 Exploiting FTP
Lecture 11 Exploiting Browsers
Lecture 12 Exploiting Android
Lecture 13 Post-Exploitation with Meterpreter
Lecture 14 Getting Password Hashes
Lecture 15 Privilege Escalation with Meterpreter
Lecture 16 Fingerprinting and Scanning with Nmap
Lecture 17 Exploitation
Lecture 18 Spawning a tty Shell
Section 2: Learning Metasploit
Lecture 19 The Course Overview
Lecture 20 Exploring Metasploit
Lecture 21 Effective and Powerful Supplementary Tools
Lecture 22 Using the Kali Linux Virtual Machine
Lecture 23 Installation
Lecture 24 Setting Up Exploitable Targets in a Virtual Environment
Lecture 25 Structure and Components of Metasploit
Lecture 26 Playing Around with msfconsole
Lecture 27 Variables and Updating the Metasploit
Lecture 28 Information Gathering and Enumeration
Lecture 29 Advance Features in Metasploit
Lecture 30 Nmap
Lecture 31 Managing the Database
Lecture 32 Nessus
Lecture 33 Need of Client-Side Attacks
Lecture 34 The msfvenom Utility
Lecture 35 Social Engineering with Metasploit
Lecture 36 Setting Up a Vulnerable Application
Lecture 37 Web Application Scanning Using WMAP
Lecture 38 Metasploit Auxiliaries for Web Application Enumeration and Scanning
Lecture 39 Using Encoders to Avoid AV Detection
Lecture 40 Anti-Forensics
Lecture 41 Armitage Console
Lecture 42 Scanning and Enumeration
Lecture 43 Find and Launch Attacks
Lecture 44 Exploit Development Concepts
Lecture 45 Exploit Templates and Mixins
Lecture 46 Adding External Exploits to Metasploit
Section 3: Hands-On Penetration Testing with Metasploit
Lecture 47 The Course Overview
Lecture 48 Metasploit Framework Overview
Lecture 49 MSFconsole, MSFcli, and MSFencode
Lecture 50 Exploit and Auxiliary
Lecture 51 Installation of Virtual Machine
Lecture 52 Installation of Kali Linux
Lecture 53 Installation of Windows10
Lecture 54 Information Gathering
Lecture 55 Port Scanning Techniques
Lecture 56 Port Scanning with Nmap
Lecture 57 Metasploit Port Scanners
Lecture 58 Vulnerability Scanning
Lecture 59 Nessus Installation
Lecture 60 Using Nessus by Writing Metasploit
Lecture 61 Scanning a Website for Vulnerabilities
Lecture 62 Exploitation Overview
Lecture 63 Windows Exploitation
Lecture 64 Website Exploitation
Lecture 65 Network Exploitation
Lecture 66 Post-Exploitation – Overview
Lecture 67 Meterpreter
Lecture 68 Meterpreter Scripts
Lecture 69 Bypassing UAC
Lecture 70 Client-Side Attack – Overview
Lecture 71 MSFencode Attack
Lecture 72 Social Engineering
Lecture 73 Social Engineering Toolkit
Section 4: Hands-on Web Penetration Testing with Metasploit 4.x
Lecture 74 The Course Overview
Lecture 75 Exploring VirtualBox
Lecture 76 Installation of Kali Linux Part – 1
Lecture 77 Installation of Kali Linux Part – 2
Lecture 78 Installation of Windows
Lecture 79 Installation of Metasploitable
Lecture 80 Methodology of Hackers
Lecture 81 Understanding Bit Hacker Jargon!
Lecture 82 Reconnais-sance and Passive In-formation Gathering
Lecture 83 Usage of Metasploit-able
Lecture 84 Usage of Zenmap
Lecture 85 Exploring Open Ports
Lecture 86 Using Metasploit
Lecture 87 Downloading Nessus
Lecture 88 Installation of Nessus
Lecture 89 Scan Results of Nessus
Lecture 90 Aggressive Scan Results
Lecture 91 Metasploit Framework Files
Lecture 92 Metasploit Framework Overview
Lecture 93 Searching for Exploits
Lecture 94 Payloads and Exploits
Lecture 95 Gaining Access
Lecture 96 Understanding Trojan/Backdoors
Lecture 97 Veil Installation
Lecture 98 Veil Overview
Lecture 99 Backdoor Creation
Lecture 100 Delivery of the Back-door
Lecture 101 Using Back-door with Metasploit
Lecture 102 Meterpreter Overview
Lecture 103 Using Meterpreter Commands
Lecture 104 Stealing Info and Screenshotter
Lecture 105 Maintaining Access
Lecture 106 Monitor Your Resources
Lecture 107 Writing the Draft
Lecture 108 Finalize and Present the Report
This course is for, penetration tester, ethical hacker, or security consultant, system administrators, security professionals willing to learn Metasploit framework & carry out elementary penetration testing in highly secured environments.