SEC‐335 - Foren-Ken/tech-journal GitHub Wiki
What is SEC-335 and why?
Ethical Hacking, aka SEC-335, handles the reconnaissance and penetration of systems/networks. Beyond this, we are also taught how to learn and understand how to discover and develop tools to penetrate systems. The goal of this page will be to catalogue my journey through this class and to make it a reference to future me.
| Week | Subject | Deliverables |
|---|---|---|
| 1 | Passive Reconnaissance | Week One Passive Reconnaissance Basics |
| 2 | Active Reconnaissance | Host Discovery, Nmap Guide |
| 3 | DNS | DNS Enumeration |
| 4 | Manual Vulnerability Detection | Exploiting Server "Cupcake", "Cupcake" Exploitation Recap |
| 5 | Password Guessing | Password Guessing Methods |
| 6 | Password Cracking | Password Cracking Methods, Password Cracking Reminders |
| 7 | Webshells | Exploiting "Pippin" Server |
| 8 | Reverse Shells | Utilizing Weevely, Reverse Shells Creation/Usage |
| 9 | SQL Injections | Exploiting Gloin |
| 10 | Permission Vulnerabilities | Basic Permission Vulnerabilities |