Network Hacking Continued – Intermediate to Advanced

(1 review)
$190.00 $49.00

Welcome to my advanced network hacking course, this course is designed to build up on what you already know about network hacking, therefore I recommend finishing the network hacking section of my general ethical hacking course or finishing my network hacking course before starting this course.

Just like all of my other courses, this course is highly practical, but it will not neglect the theory, since this is an advanced course we will be breaking each attack into its smaller components and understand how each of these components work, therefore by the end of the course you will be able to mix these attacks and adopt attacks to suit different situations and different scenarios, not only that but at the end of the course I will teach you how to write your own man in the middle scripts to implement your own man in the middle attacks.

Because this course builds on what you learn in the courses mentioned above, the main sections here have similar titles to the main sections in these courses, but the topics covered here are more advanced.

This course is divided into three main sections:

  1. Pre-Connection Attacks – in this section you will learn how to extend the pre-connection attacks that you already know, for example you will learn how to run all the attacks that you know so far against networks and clients that use 5Ghz, extend the deauthentication attack to target multiple clients and multiple networks at the same time, and manually change your mac address so that you can change it on any device that supports that without depending on any tools.
  2. Gaining Access – In this section you will learn a number of advanced techniques to gain access to various network configurations and various network encryptions. First you will learn how to overcome some security features that would prevent you from even trying any attacks, you will learn how to discover and target hidden networks and bypass mac filtering weather it is implemented using a black-list or a white-list. As you go through all of the lectures in this section, you will learn how to manually configure and create a fake access point, you will understand exactly how it works and the services it relies on, therefore by the end of this section you will be able to create custom fake access points to suit your needs, so you will be able to create fake captive portalssteal WPA/WPA2 passwords or use it to spy on clients that connect to it. This section is divided into a number of subsections each covering a specific topic:
    1. Captive Portals – captive portals are open networks that require users to login after connecting to it, they are usually used in hotels and airports. In this subsection you will learn three methods to gain access to captive portals.
    2. WEP Cracking – Even though this is an old and weak encryption, this is still used in some networks and you can not call yourself a hacker if you can not crack it, by now you should know how to rack WEP if OPEN authentication is used, in this section you will learn how to gain access to WEP networks that use Shared Key Authentication (SKA) as all of the methods that you learned so far will NOT work against SKA.
    3. WPA/WPA2 cracking – In this section you will learn more advanced techniques to gain access to WPA/WPA2 networks, this section is divided into even smaller subsections:
      1. Exploiting WPS – in this subsection you will learn how to debug reaver’s output and exploit the WPS feature on more routers using reaver’s advanced options, you will also learn how to unlock some routers if they lock after a number of failed attempts.
      2. Advanced Wordlist Attacks – in this subsection you will learn how to run more advanced wordlist attacks, this will increase your chances of cracking the key; you will learn how to use huge wordlists without wasting storagesave the cracking progress so that you can pause and resume the cracking process whenever you want, you will also learn how to crack the key much faster using the GPU instead of the CPU.
      3. Evil Twin Attack – Finally if none of the above methods work, then the last resort is to use social engineering to get the key, in this subsection you will learn how to get the password for a target WPA/WPA2 network using social engineering, without guessing and without using a wordlist.
    4. WPA/WPA2 Enterprise – These networks are usually used in companies and colleges, these are secure networks that use WPA/WPA2 but also require users to login with a username and password after connecting, in this subsection you will understand how they work and how to gain access to them.
  3. Post-Connection Attacks – In this section you will learn a number of advanced attacks that you can run after connecting to a network, all of the attacks in this subsection work against WiFi and ethernet networks, you will learn how to manually bypass HTTPS and capture sensitive data, you will be able to use this method regardless of how you became the man in the middle so you will be able to use it with any scenario or situation when interesting data is flowing through your computer, you will also learn how to inject javascript/HTML in HTTPS websitesbypass router-side security and run ARP poisoning attacks without raising any alarms. You will also learn how to manually analyse data flows and build your own MITM attack ideas even if there are no tools that run your attack, not only that but I will also teach you how to write your own scripts to execute your own MITM attacks. By the end of this section you will learn the right methodology of building your own attack, you’ll learn how to analyse network flows, run a simple test, translate that into a working script that implements your attack, and finally test that script against a remote computer.

Finally at the end of the course you will learn how to protect yourself and your systems from these attacks.

All the attacks in this course are practical attacks that work against real computers, in each technique you will understand the theory behind it and how it works, then you’ll learn how to use that technique in a real life scenario, so by the end of the course you’ll be able to modify these techniques or combine them to come up with more powerful attacks and adopt them to different scenarios and different operating systems.

NOTE: This course is created for educational purposes only and all the attacks are launched in my own lab or against devices that I have permission to test.

NOTE: This course is totally a product of Zaid Sabih and no other organization is associated with it or a certification exam. Although, you will receive a Course Completion Certification from Udemy, apart from that NO OTHER ORGANIZATION IS INVOLVED.

Course Features

  • Lectures 82
  • Duration 10 hours
  • Skill level All levels
  • Language English
  • Students 90055
  • Assessments Yes
  • Introduction 0/2

  • Back To Basics/Pre-Connection Attacks 0/6

    • Lecture2.1
      Pre-connection Attacks Overview
      2m
    • Lecture2.2
      Spoofing Mac Address Manually
      3m
    • Lecture2.3
      Targeting 5 GHz Networks
      7m
    • Lecture2.4
      Deauthenticating a Client From Protected WiFi Networks
      7m
    • Lecture2.5
      Deauthenticating Multiple Clients From Protected WiFi Networks
      8m
    • Lecture2.6
      Deauthenticating All Clients From Protected WiFi Network
      6m
  • Gaining Access 0/6

    • Lecture3.1
      Gaining Access Overview
      2m
    • Lecture3.2
      Discovering Names of Hidden Networks
      8m
    • Lecture3.3
      Connecting To Hidden Networks
      5m
    • Lecture3.4
      Bypassing Mac Filtering (Blacklists & Whitelists)
      9m
    • Lecture3.5
      Securing Systems From The Above Attacks
      3m
    • Lecture3.6
      Cracking SKA WEP Networks
      9m
  • Gaining Access - Captive Portals 0/13

    • Lecture4.1
      Sniffing Captive Portal Login Information In Monitor Mode
      10m
    • Lecture4.2
      Sniffing Captive Portal Login Information Using ARP Spoofing
      9m
    • Lecture4.3
      Creating a Fake Captive Portal – Introduction
      4m
    • Lecture4.4
      Creating Login Page – Cloning a Login Page
      7m
    • Lecture4.5
      Creating Login Page – Fixing Relative Links
      7m
    • Lecture4.6
      Creating Login Page – Adding Form Tag
      8m
    • Lecture4.7
      Creating Login Page – Adding Submit Button
      7m
    • Lecture4.8
      Preparing Computer To Run Fake Captive Portal
      8m
    • Lecture4.9
      Starting The Fake Captive Portal
      12m
    • Lecture4.10
      Redirecting Requests To Captive Portal Login Page
      12m
    • Lecture4.11
      Generating Fake SSL Certificate
      6m
    • Lecture4.12
      Enabling SSL/HTTPS On Webserver
      8m
    • Lecture4.13
      Sniffing & Analysing Login Credentials
      6m
  • Gaining Access - WPA/WPA2 Cracking - Exploiting WPS 0/5

    • Lecture5.1
      Exploiting WPS – Introduction
      1m
    • Lecture5.2
      Bypassing “Failed to associate” Issue
      8m
    • Lecture5.3
      Bypassing 0x3 and 0x4 Errors
      8m
    • Lecture5.4
      WPS Lock – What Is It & How To Bypass It
      7m
    • Lecture5.5
      Unlocking WPS
      9m
  • Gaining Access - WPA/WPA2 Cracking - Advanced Wordlist Attack 0/6

    • Lecture6.1
      Advanced Wordlist Attacks – Introduction
      2m
    • Lecture6.2
      Saving Aircrack-ng Cracking Progress
      10m
    • Lecture6.3
      Using Huge Wordlists With Aircrack-ng Without Wasting Storage
      7m
    • Lecture6.4
      Saving Cracking Progress When Using Huge Wordlists Without Wasting Storage
      10m
    • Lecture6.5
      Cracking WPA/WPA2 Much Faster Using GPU – Part 1
      7m
    • Lecture6.6
      Cracking WPA/WPA2 Much Faster Using GPU – Part 2
      10m
  • Gaining Access - WPA/WPA Cracking - Evil Twin Attack 0/4

    • Lecture7.1
      What is It & How it Works
      7m
    • Lecture7.2
      Installing Needed Software
      7m
    • Lecture7.3
      Stealing WPA/WPA2 Key Using Evil Twin Attack Without Guessing
      9m
    • Lecture7.4
      Debugging & Fixing Login Interface
      12m
  • Gaining Access - WPA/WPA2 Cracking - WPA/WPA2 Enterprise 0/5

    • Lecture8.1
      What is WPA/WPA2 Enterprise & How it Works
      5m
    • Lecture8.2
      How To Hack WPA/WPA2 Enterprise
      7m
    • Lecture8.3
      Stealing Login Credentials
      8m
    • Lecture8.4
      Cracking Login Credentials
      6m
    • Lecture8.5
      Securing Systems From The Above Gaining Access Attacks
      5m
  • Post Connection Attacks 0/7

    • Lecture9.1
      Post Connection Attacks Overview
      4m
    • Lecture9.2
      Ettercap – Basic Overview
      7m
    • Lecture9.3
      Ettercap – ARP Spoofing & Sniffing Sensitive Data Such As Usernames & Passwords
      10m
    • Lecture9.4
      Setting Up SSLstrip Manually To Bypass HTTPS & Sniff Data From HTTPS Websites
      13m
    • Lecture9.5
      Automatically ARP Poisoning New Clients
      6m
    • Lecture9.6
      DNS Spoofing Using Ettercap
      5m
    • Lecture9.7
      Bypassing Router-Side Security & Poisoning Target Without Triggering Alarms
      9m
  • Post Connection Attacks - Analyzing Data Flows & Running Custom Attacks 0/10

    • Lecture10.1
      MITMproxy – What is It & How To Install It
      4m
    • Lecture10.2
      Using MITMproxy In Explicit Mode
      7m
    • Lecture10.3
      Analysing (Filtering & Highlighting) Flows
      5m
    • Lecture10.4
      Intercepting Network Flows
      5m
    • Lecture10.5
      Modifying Responses & Injecting Javascript Manually
      9m
    • Lecture10.6
      Intercepting & Modifying Responses In Transparent Mode
      7m
    • Lecture10.7
      Editing Responses & Injecting BeEF’s Code On The Fly
      9m
    • Lecture10.8
      Editing Responses Automatically Based On Regex
      9m
    • Lecture10.9
      [Bonus] – Stealing Login Info Using Fake Login Prompt
      7m
    • Lecture10.10
      [Bonus] – Hacking Windows 10 Using A Fake Update
      5m
  • Post Connection Attacks - Writing Custom Scripts To Execute Own Attacks 0/14

    • Lecture11.1
      What Do Mean By MITM Scripts?
      6m
    • Lecture11.2
      Capturing & Printing Requests/Responses
      8m
    • Lecture11.3
      Filtering Flows & Extracting Useful Data
      9m
    • Lecture11.4
      Using Conditions To Execute Code On Useful Flows
      10m
    • Lecture11.5
      Generating Custom HTTP Responses
      8m
    • Lecture11.6
      Testing Script Locally
      8m
    • Lecture11.7
      Generating Trojans – Installing The Trojan Factory
      6m
    • Lecture11.8
      Generating Trojans – Converting Any File (eg:image) To a Trojan
      10m
    • Lecture11.9
      Testing Script On Remote Computer To Replace Downloads With a Generic Trojan
      7m
    • Lecture11.10
      Executing Bash Commands & Calling Trojan Factory From Our Script
      9m
    • Lecture11.11
      Using Variables & More Complex Conditions
      9m
    • Lecture11.12
      Converting Downloads To Trojans On The Fly
      10m
    • Lecture11.13
      Configuring The Trojan Factory’s MITMproxy Script
      7m
    • Lecture11.14
      Using The Trojan Factory MITMproxy Script
      8m
  • Post-Connection Attacks - Doing All Of The Above On HTTPS Websites 0/4

    • Lecture12.1
      Bypassing HTTPS With MITMproxy
      6m
    • Lecture12.2
      Replacing Downloads From HTTPS
      5m
    • Lecture12.3
      Injecting Data (Javascript, HTML elements …etc) In HTTPS Websites
      6m
    • Lecture12.4
      Securing Systems From The Above Post Connection Attacks
      6m
Zaid Sabih

Ethical Hacker, Pentester & Computer Scientist

My name is Zaid Al-Quraishi, I am an ethical hacker, a computer scientist, and the founder and CTO of zSecurity. I just love hacking and breaking the rules, but don’t get me wrong as I said I am an ethical hacker. I studied computer science in University College Dublin, I graduated in may 2016. I have a very good experience in ethical hacking, I started making video tutorials back in 2009 in an ethical hacking community (iSecuri1ty.org), I also worked as a pentester for the same company. In 2013 I started teaching my first course online in Arabic, this course received amazing feedback which motivated me to create an English version of this course. The english course became the most popular and the top paid course in Udemy for almost a year, this motivated me to make more courses on ethical hacking, now I have a number of courses on ethical hacking and more than 200,000 students on Udemy and other teaching platforms such as StackSocial, StackSkills and zSecurity.

Reviews

Average Rating

5
1 rating

Detailed Rating

5 stars
1
4 stars
0
3 stars
0
2 stars
0
1 star
0

    A Fantastic Course

    After taking other courses by Zaid I didn't hesitate to enrol on this one, everything I am currently learning to extend my knowledge is here, and well explained, this is the perfect continuation of Zaid's previous courses.

$190.00 $49.00