The Free Penetration Testing Course is defined as the practice of launching authorized, simulated attacks against computer systems, webapplications and their physical infrastructure to expose potential security weaknesses and vulnerabilities.
With this free udemy course you will start as beginner without previous knowledge about penetration testing. This course explains all the 5 stages starting form Information Gathering, Enumeration, Vulnerability Scanning, Exploitation and Post Exploitation.
Free Penetration Testing Course stages
Information gathering : in this stage we will try to collect as much information as we can such as target hostname and related hosts using active and passive information gathering techniques.
Enumeration: you will never enumerate too much. I would say that enumeration is the key of successful exploitation. In this stage we need to find out what services, service’s version and applications are running on target machine and what operating system is running on target.
Vulnerability Scanning: in this stage you will learn how to find vulnerabilities/security issues using automated scanning tools or manually in services that we discovered in last stage.
Exploitation: this is very important stage in which you are trying to exploit vulnerabilities in applications or services that we discovered in „Vulnerability Scanning“ stage. Sometimes this can be stressful process because there might be firewall, intrusion detection system (IDS) or intrusion prevention system (IPS) that will detect us as attackers – in that case we need to find bypass.
Post Exploitation: after we successfully exploited our target over vulnerabilities that we discovered, we need to check if that machine is related to other machines on the network or machine is part of more networks, in that case we can use exploited machine as pivot to gather more information about network we didn’t have access before.