This course focuses on teaching the enumeration phase of web application testing. By the end of the course, students will be able to identify subdomains using tools like sublist3r and crt.sh, enumerate with Burp Suite, understand credential stuffing and password spraying theory, use Nikto as a vulnerability scanner, analyze cipher strength, perform fingerprinting with nmap, and actively scan with Burp Suite Pro. The teaching method includes practical demonstrations and hands-on exercises. This course is intended for individuals interested in ethical hacking, web application security, and penetration testing.
Overview
Syllabus
- Introductions/Welcomes.
- whoami.
- Course learning objectives.
- Important TCM resources.
- Web app resources.
- Five stages of ethical hacking.
- Reconnaissance overview.
- Identifying target to enumerate.
- Using sublist3r to identify subdomains.
- Using crt.sh to identify subdomains.
- Setting up proxy for Burp Suite.
- Enumerating with Burp Suite.
- Credential stuffing/password spraying theory/tools.
- Using Nikto as a vulnerability scanner.
- Enumerating cipher strength.
- Using nmap for fingerprinting.
- Actively scanning with Burp Suite Pro.
- Reviewing Juice Shop.
- AMA begins.
Taught by
The Cyber Mentor
Related Courses
-
Intro to Burp Suite Pro
-
Web Application Ethical Hacking - Penetration Testing Course for Beginners
4.1 -
Ethical Hacking 101: Web App Penetration Testing - a full course for beginners
4.5 -
Free Hacking Tools for Penetration Testing & Ethical Hacking
-
Learn web application penetration testing from %00
-
Learn Bug Bounty Hunting & Web Security Testing From Scratch
