Free Hacking Courses: Code Red

I was recently pointed to a cool learning platform for up-and-coming hackers: EC-Council’s Code Red. Some of the basic video courses that come with the free membership look good. Check it out: https://codered.eccouncil.org/Home I’d love to see your impressions, so comment below if you try it out.  

[ Certified Ethical Hacker v10 ] :: [ Module 11 ] :: SQL Injection

Glenn Norman hacking
This entry is part 13 of 21 in the series [ Certified Ethical Hacker Training ]

SQL injection Cheat sheet: https://www.netsparker.com/blog/web-security/sql-injection-cheat-sheet/ OWASP guide: https://www.owasp.org/index.php/SQL_Injection Dumping a complete database: http://resources.infosecinstitute.com/dumping-a-database-using-sql-injection/ Exercises 1. Log into your root-me.org account, click Challenges and click Web Server. This will get you here: https://www.root-me.org/en/Challenges/Web-Server/. Start with “SQL Injection – Authentication”. Note all the other SQL Injection challenges. Can you beat them all? 2. In either Metasploitable2 or …

[ Certified Ethical Hacker v10 ] :: [ Module 9 ] :: Session Hijacking

School for Hackers :: Red Glasses Girl
This entry is part 11 of 21 in the series [ Certified Ethical Hacker Training ]

Module 9: Session Hijacking Brute-forcing a Session ID Stealing a Session ID Calculating an ID Spoofing vs. Hijacking Be sure to recognize the difference between just lying about your IP address, and actually taking over a running user session. Cross-site scripting MitM SMB Relay attack: https://pen-testing.sans.org/blog/2013/04/25/smb-relay-demystified-and-ntlmv2-pwnage-with-python Tools Ettercap Cain & Abel

[ How to Teach Hacker Highschool: Unit 4 ]

Glenn Norman
This entry is part 5 of 6 in the series [ How to Teach Hacker Highschool ]

This is post 4 of 5 in the series “[ How to Teach Hacker Highschool ]” This is the fourth unit of my course for teachers, which brings together a lot of material I generated while working as Project Manager for the Hacker Highschool v2 Rewrite Project, 2012-2016. This session helps you get started with …

[ Hacker Night School ] :: Get your hack on crackin this site: root-me.org

Glenn Norman
This entry is part 2 of 2 in the series [ Sites Where You Can Hack ]

This is post 4 of 17 in the series “[ Hacker Night School ]” Where HackThisSite.org is about … hacking that site, root-me.org is a whole platform. That means you can work your way through entire categories of Challenges: apps, crypto, forensics, stego, web clients and servers, and so forth. This is a blast. Don’t …

[ Hacker Night School ] :: Sites To Practice Hacking: HackThisSite.org

Glenn Norman
This entry is part 1 of 2 in the series [ Sites Where You Can Hack ]

This is post 3 of 17 in the series “[ Hacker Night School ]” HackThisSite is the perfect place to start this list of online hacking platforms. It’s been around a long time, and has a really active community. Of course, the specific flavor of hacking you’ll pursue here is web application testing. The domain …