Hacking Projects - HoseaCodes/OnePercent GitHub Wiki

Objective: Learn how password cracking works and the importance of strong passwords.

Tools: Hashcat, John the Ripper.
Tasks:
- Create hashes of simple passwords.
- Attempt to crack them using dictionary attacks or brute force.
Learning Goals:
- Understand hash algorithms like MD5 and SHA.
- Learn why password complexity matters.

Objective: Capture and analyze network traffic to understand packet structures.

Tools: Wireshark, tcpdump.
Tasks:
- Set up a local network and capture packets.
- Analyze HTTP, HTTPS, and DNS traffic.
Learning Goals:
- Understand how data travels over networks.
- Learn about the risks of unencrypted traffic.

Objective: Understand how keyloggers work and their potential impact.

Tools: Python.
Tasks:
- Write a script to log keystrokes on your own system.
- Use it in a controlled environment (e.g., virtual machine).
Learning Goals:
- Learn how malicious software operates.
- Understand the importance of endpoint security.

Objective: Test and understand SQL injection vulnerabilities.

Tools: DVWA (Damn Vulnerable Web App), OWASP Juice Shop.
Tasks:
- Set up a vulnerable app locally.
- Perform SQL injection to extract data from a database.
Learning Goals:
- Understand how improper input validation leads to vulnerabilities.
- Learn how to prevent SQL injections.

Objective: Create a fake target to attract and analyze attacks.

Tools: Honeyd, Cowrie, or Modern Honey Network (MHN).
Tasks:
- Deploy a honeypot on a virtual machine.
- Monitor and log intrusion attempts.
Learning Goals:
- Learn about common attack patterns.
- Understand attacker behavior and motivations.

Objective: Explore wireless network vulnerabilities.

Tools: Aircrack-ng, Kali Linux.
Tasks:
- Set up a test wireless network.
- Perform WPA handshake capture and crack weak passwords.
Learning Goals:
- Understand Wi-Fi encryption protocols (WEP, WPA, WPA2).
- Learn about the risks of weak Wi-Fi configurations.

Objective: Identify common vulnerabilities in web apps.

Tools: OWASP Juice Shop, Burp Suite.
Tasks:
- Test for XSS, CSRF, and command injection vulnerabilities.
- Use Burp Suite to intercept and manipulate HTTP requests.
Learning Goals:
- Understand web application security flaws.
- Learn how hackers exploit poorly secured web apps.

Objective: Understand how phishing works and how to recognize it.

Tools: Gophish.
Tasks:
- Create a mock phishing email and landing page (in a controlled environment).
- Test how convincing it is to yourself or others (for learning purposes).
Learning Goals:
- Understand email spoofing and social engineering tactics.
- Learn how to identify phishing attempts.

Objective: Solve hacking puzzles to gain practical experience.

Platforms: TryHackMe, Hack The Box, PicoCTF.
Tasks:
- Start with beginner-friendly challenges in cryptography, forensics, and exploitation.
- Progress to intermediate and advanced challenges.
Learning Goals:
- Get hands-on hacking experience.
- Learn about various tools and techniques.

Objective: Scan networks to identify potential vulnerabilities.

Tools: Nmap, Nessus (free trial), OpenVAS.
Tasks:
- Set up a local network.
- Scan for open ports and vulnerable services.
Learning Goals:
- Understand the role of vulnerability scanners.
- Learn about network-level vulnerabilities.

Objective: Hide data in images or audio files.

Tools: Steghide, Python libraries like cryptography.
Tasks:
- Embed text into an image or audio file.
- Extract the hidden text using a script.
Learning Goals:
- Learn about data obfuscation techniques.
- Understand the risks of hidden data in files.

Objective: Explore social engineering techniques in a controlled environment.

Tools: SET (Social Engineering Toolkit) on Kali Linux.
Tasks:
- Simulate attacks like credential harvesting (on test systems).
- Test these techniques on a virtual lab.
Learning Goals:
- Understand human factors in cybersecurity.
- Learn how to spot and mitigate social engineering.

Objective: Analyze the behavior of a simple malware file.

Tools: Cuckoo Sandbox, Any.Run (online tool).
Tasks:
- Use a safe environment to test malware samples.
- Monitor network connections, file changes, and process behavior.
Learning Goals:
- Learn about common malware types.
- Understand the importance of antivirus and anti-malware solutions.

Books:
- "The Basics of Hacking and Penetration Testing" by Patrick Engebretson.
- "Metasploit: The Penetration Tester's Guide" by David Kennedy.
Courses:
- [Introduction to Ethical Hacking (Cybrary)](https://www.cybrary.it/).
- [Kali Linux for Beginners (Udemy)](https://www.udemy.com/).
Communities:
- Reddit: [r/netsec](https://www.reddit.com/r/netsec/), [r/hacking](https://www.reddit.com/r/hacking/).
- Discord servers for CTFs like TryHackMe and Hack The Box.

Would you like step-by-step guidance on starting one of these projects?