41 replies

I wanna learn ethical hacking

Hi, i cant disclose my name because i dont want to but you can refer me as unknown. I have some knowledge in computers. Ive been using them for a long time. I've looked at many courses etc for ethical hacking and warched them all but the problem is these become outdated real quick. If anyone could provide me with free courses and resouces, it would be appreciated.

Cyber Forum•7/27/23, 12:50 AM

Post created!

This post has been indexed in our web forum and will be seen by search engines so other users can find it outside Discord

Your user profile is private by default and won't be visible to users outside Discord, if you want to be visible in the web forum you can add the "Public Profile" role in <id:customize>

You can mark a message as the answer for your post with Right click -> Apps -> Mark SolutionRight click -> Apps -> Mark Solution
(if you don't see the option, try refreshing Discord with Ctrl + R)

NNovaX Hi, i cant disclose my name because i dont want to but you can refer me as unkno...

Collin B.•7/27/23, 2:31 AM

Hey! Welcome to the community, this course is free on YouTube and has some amazing stuff. https://www.youtube.com/watch?v=3FNYvj2U0HM&pp=ygUPZXRoaWNhbCBoYWNraW5n

I also recommend checking out resources like HackTheBox and TryHackMe if you do decide to spend a little cash. Another good path would be to pursue education geared towards earlier certifications that are popular in the industry such as PenTest+ and CEH. You don't necessarily need to actually test for these unless you plan on making a career out of it then they are definitely useful for getting your start in the offensive ops side of things.

YouTubeThe Cyber Mentor

Ethical Hacking in 15 Hours - 2023 Edition - Learn to Hack! (Part 1)

0:00 - Introduction/whoami
6:43 - A Day in the Life of an Ethical Hacker
27:44 - Effective Notekeeping
34:27 - Important Tools
39:51 - Networking Refresher: Introduction
41:06 - IP Addresses
54:18 - MAC Addresses
57:35 - TCP, UDP, & the Three-Way Handshake
1:02:51 - Common Ports & Protocols
1:09:04 - The OSI Model
1:14:39 - Subnetting, Part 1
1:...

incredible-moccasinOP•7/27/23, 2:31 AM

already watched it

Collin B.•7/27/23, 2:33 AM

Then I recommend checking out those certifications and learning what's on them. Do labs, whether that means home labs or things like HackTheBox. The best way to learn the concepts and tools is doing it!

incredible-moccasinOP•7/27/23, 2:34 AM

ok so basically ive done everything

incredible-moccasinOP•7/27/23, 2:34 AM

i find it hard to find my resources though are their like easier ways

incredible-moccasinOP•7/27/23, 2:35 AM

ive learnt basics

incredible-moccasinOP•7/27/23, 2:35 AM

i wanna find ways to extend my knowledge past the basics

Collin B.•7/27/23, 2:44 AM

Are you proficient in a scripting language yet?

incredible-moccasinOP•7/27/23, 2:48 AM

python

incredible-moccasinOP•7/27/23, 2:48 AM

ive never used hackthebox before ima go through it

incredible-moccasinOP•7/27/23, 2:48 AM

looks interesting

incredible-moccasinOP•7/27/23, 3:00 AM

the very easy ones are ofc very easy lol

w33t•7/27/23, 3:24 AM

I wouldn't focus on just "ethical hacking" because you're gonna be pretty limited if you don't understand systems and networking in-depth. It's a common meme where people will jump straight to "i wanna be a super mysterious hackerman" without learning the foundation of computing and networking. I can't tell you how many times I've seen pentesters or threat actors get stumped because a network is not on a /24.

incredible-moccasinOP•7/27/23, 3:24 AM

ive gone through systems and networking in the past

NNovaX the very easy ones are ofc very easy lol

w33t•7/27/23, 3:24 AM

I'd hope so, they're meant to get you a foundation. Checkout their academy and look at TryHackMe too.

Uurgent-maroon I wouldn't focus on just "ethical hacking" because you're gonna be pretty limite...

incredible-moccasinOP•7/27/23, 3:24 AM

/24 is to do with subnetting right?

w33t•7/27/23, 3:25 AM

Sounds like you need to go through networking again lol but yes.

incredible-moccasinOP•7/27/23, 3:25 AM

nah i have notes i dont remember stuff

w33t•7/27/23, 3:26 AM

Then you should keep at it until you do, because a /24 is a basic networking thing you'll see everywhere. You're probably on a /24 right now.

incredible-moccasinOP•7/27/23, 3:26 AM

w33t•7/27/23, 3:26 AM

You don't want to have to flip through your notes at every turn for basic things because then more advanced concepts will elude you.

incredible-moccasinOP•7/27/23, 3:27 AM

ill eventually remember

w33t•7/27/23, 3:28 AM

They key is repetition, as with many things in IT as a whole, so definitely keep at it, if you're looking to make a career out of it. Additionally, a lot of what people are teaching online doesn't really get outdated as quickly as you might think. The foundations of offensive security don't really change too much.

w33t•7/27/23, 3:28 AM

Even if it is older content, there will still likely be something to learn from it.

incredible-moccasinOP•7/27/23, 3:28 AM

HTTP AND HTTPS
nikto -h http://IP ADRESS HERE "tests network security of IP Address"
https://github.com/Gr1mmie/sumrecon



dirbuster for finding directories
dirb
gobuster


TCP
telnet
ftp
get

HTTP AND HTTPS
nikto -h http://IP ADRESS HERE "tests network security of IP Address"
https://github.com/Gr1mmie/sumrecon



dirbuster for finding directories
dirb
gobuster


TCP
telnet
ftp
get

ive got my notes set up something like this

incredible-moccasinOP•7/27/23, 3:29 AM

dont mind the spelling mistakes

w33t•7/27/23, 3:30 AM

You'll thank yourself later if you add more context to your notes instead of just throwing random terms in there lol.

incredible-moccasinOP•7/27/23, 3:30 AM

i know the what they mean i just forgot commands

w33t•7/27/23, 3:31 AM

What is the context behind this lol https://i.w33t.io/file/2023/07/Austere-Turd-Weesnaw.png