Udemy Learn Ethical Hacking From Scratch Course Review
Course Feature Specification — "Ethical Hacking from Scratch"
Cons
- Some tools/techniques may be slightly outdated (check recent reviews)
- Assumes you can set up virtual lab (VirtualBox/VMware)
What it covers
- Network hacking (Wi-Fi, LAN)
- Gaining access (server/client-side attacks)
- Post-exploitation (maintaining access)
- Website/web app hacking
- Malware development (basic)
- Social engineering
- Linux & Windows basics for hackers
2. Prerequisites
| Area | Requirement | |------|--------------| | OS knowledge | Basic Windows/Linux navigation | | Networking | Understanding of IP addresses, ports, HTTP (helpful but not mandatory) | | Hardware | 8+ GB RAM, virtualization capable (VT-x/AMD-V) | | Software | VirtualBox / VMware, Kali Linux ISO, Windows test VM |
Section 7: Website / Web Application Hacking
The final section focuses on hacking web servers. udemy learn ethical hacking from scratch course
- SQL Injection – Dumping entire databases to get usernames and passwords.
- Cross Site Scripting (XSS) – Injecting malicious scripts into vulnerable websites.
- Brute force attacks on login forms.
- CSRF (Cross Site Request Forgery).
3. Curriculum Analysis
The course is divided into six major sections: Some tools/techniques may be slightly outdated (check recent
| Section | Topics Covered | Practical Labs | |---------|----------------|----------------| | 1. Setup | Installing Kali Linux (VM/Bare metal), VirtualBox, network adapter config. | Setting up lab environment. | | 2. Network Penetration Testing | Pre-connection attacks (packet sniffing), Gaining access (WEP/WPA/WPA2 cracking), Post-connection (MITM, DNS spoofing). | Deauth attack, handshake capture, dictionary attack. | | 3. Gaining Access | Client-side attacks (fake updates, trojans), Server-side (Metasploit basics). | Generating backdoors with Veil-Evasion. | | 4. Post-Exploitation | Maintaining access (backdoors, keyloggers), pivoting. | Meterpreter sessions, privilege escalation on Windows 7/10. | | 5. Web Application Pentesting | SQL injection, XSS, CSRF, file inclusion. | Manual SQLi on bWAPP, reflected XSS. | | 6. Bonus | ARP poisoning detection, phishing page creation. | Social Engineering Toolkit (SET). | What it covers