Introduction to Ethical Hacking Tools

Developed with QA
OverviewStepsAuthor
QA
This content is developed in partnership with QA
DifficultyIntermediate
AVG Duration8h
Students295
Ratings
4.4/5
starstarstarstarstar-half
Content
Course Created with Sketch. 10 Resources Created with Sketch. 9 Exams Created with Sketch. 3 Labs Created with Sketch. 15

Description

This learning path has been designed to introduce you to a number of different ethical hacking tools, covering:

  • Nmap network scanner
  • Netcat network utility
  • Metasploit vulnerability exploitation tool
  • Nikto web app scanner
  • SQLmap SQL injection tool
  • Burpsuite web app proxy
  • Dirbuster vulnerability scanner
  • Droopescan vulnerability exploitation tool

You will be guided through this learning path with a variety of video tutorials, in addition to hands-on labs and PDF resources 

Intended Audience

If you are looking to become an ethical hacker, or have an interest in security and would like to gain an understanding on how to protect your environment through different ethical hacking methods and techniques, then this learning path is for you. 

Learning Objectives

To introduce you to the most popular ethical hacking tools including:

  • Various types of footprinting and reconnaissance tools 
  • Network scanning techniques and scanning tools 
  • Enumeration techniques and enumeration tools 
  • SQL injection attacks and injection detection tools 

Useful Tools for Independent learning

Here are two extra resources that will be useful for independent learning:

How to Install Virtual Box 

How to install Kali Linux on Virtual Box 

Prerequisites

  • Basic familiarity with Windows and Linux systems e.g. how to view a system’s IP address, command-line utilities
  • Basic understanding of Network fundamentals e.g. IP addressing, knowledge of protocols such as ICMP, HTTP, and DNS
  • Basic understanding of HTTP fundamentals e.g. Structure of an HTTP request, HTTP method verbs, HTTP response codes 

Feedback

We welcome all feedback and suggestions - please contact us at support@cloudacademy.com if you are unsure about where to start or if you would like help getting started.

Certificate

Your certificate for this learning path
lock

Learning Path Steps

1courses

This course introduces the Ethical Hacking learning path.

2courses

This course takes a look at the four main offenses under the Computer Misuse Act (CMA).

3courses

This course covers the basics of using Nmap, the network scanner.

4description

This guide covers the basics of using Nmap, the network scanner

7courses

This course covers the basics of using Netcat, the Network Utility tool.

8description

This guide covers the basics of using Netcat, the Network Utility tool

12labs

In this lab, you'll learn how to set up Hydra to perform a dictionary attack on a website.

13courses

The course covers the basics of using Metasploit, a free penetration testing tool that comes installed in Kali Linux.

14description

The guide covers the basics of using Metasploit.

17labs

In this lab, you'll perform the Heartbleed attack using the MetaSploit Framework in order to dump the contents of a vulnerable webserver using an unpatched version of OpenSSL.

18courses

This course covers the basics of using Nikto, the web app vulnerability scanner.

19description

This guide covers the basics of using Nikto, the web app vulnerability scanner.

20courses

This course covers the basics of using SQLmap, an open-source tool used in penetration testing to detect and exploit SQL injection flaws.

21description

This guide covers the basics of using sqlmap.

24labs

In this lab, you'll learn how to navigate through DVWA to perform an XSS attack to retrieve a session cookie.

25description

An introduction to the Open Web Application Security Project (OWASP) list of the top 10 most critical risks to web applications

26exam-filled

Knowledge Check: Ethical Hacking - Cross-Site Scripting

28labs

This lab shows how to manage the security level of a DVWA application and how to perform a SQL injection to a DVWA application.

29exam-filled

Knowledge Check: Ethical Hacking - SQL Injection

30courses

This course covers the basics of using Burp Suite, the web app proxy, an industry-standard penetration testing tool.

31description

This guide covers the basics of using Burp Suite, the web app proxy.

32courses

This course covers the basics of using DirBuster, the directory buster.

33description

This guide covers the basics of using DirBuster, the directory buster.

34labs

This lab shows how to manage the security level of a DVWA application and how to perform a Command Execution attack from a DVWA application.

35courses

This course covers the basics of using Droopescan, the Drupal CMS Scanner, a plugin-based scanner that is used to identify any issues in Drupal-based CMSes.

36description

This guide covers the basics of using Droopescan

37exam-filled

Knowledge Check: Basics of Ethical Hacking

About the Author
Students984
Labs6
Courses1
Learning paths2

Richard Beck is Director of Cyber Security at QA. He works with customers to build effective and successful security training solutions tailored for business needs. Richard has over 15 years' experience in senior Information Security roles. Prior to QA, Richard was Head of Information Security for an organisation who underpin 20% of the UK's Critical National Infrastructure. Richard also held Security and Technical Management posts in the Defence, Financial Services and HMG. Richard sits on a number of security advisory panels and previously chaired the Communication Industry Personnel Security Information Exchange (CPNI). Richard is also a STEM Ambassador working to engage and enthuse young people in the area of cyber security. Providing a unique perspective on the world of cyber security to teachers and encourage young people to consider a career in cyber security.