A Full Guide to Become Ethical Hacking Professional

 Concepts, Types, and Phases of Hacking A hacker is someone who is intelligent enough to use various tools and techniques to gain unauthorized access to a system in order to steal information such as usernames, passwords, financial information, credit card information, business data, and personal information. Hackers are very skilled, capable of creating software, and exploring both hardware and software. Their motives can range from paying people to hack computers to engaging in unlawful activity for enjoyment. Black Hats Hacker with amazing talents who engages in malicious and destructive acts, often known as crackers White hats Security Analyst or individuals with hacking skills using them for defensive purpose  Gray Hats Gray Hats are those work for both offensively and defensively Suicide hackers Suicide hackers are those who aim for destruction without worrying about punishment. Script Kiddies Unskilled hackers, hacking and compromising systems using tools are scrip...

 Rootkits A rootkit is a collection of software designed to provide privileged access to a remote user over the target system. Mostly, Rootkits are the collection of malicious software deployed after an attack, when the attacker has the  administrative access to the target system to maintain its privileged access for future. It creates a backdoor for an attacker; Rootkits often mask the existence of its software which helps to avoid detection. Types of Rootkits 1.Application Level Rootkits 2.Application Level Rootkits perform manipulation of standard 3.application files, modification of the behavior of the current application with an injection of codes. Kernel-Level Rootkits The kernel is the core of an OS. Kernel-Level Rootkits add additional codes (malicious), replace the section of codes of original Operating system kernel. Hardware / Firmware Level Rootkits Type of Rootkits that hides in hardware such as hard drive, network interface card, system BIOS, wh...

 Trojan Construction Kit Trojan Construction Kit allow the attacker to create their own Trojans. These customized Trojans can be more dangerous for the target as well as an attacker if it is not executed properly or backfires. These customized Trojans created by using Construction kits can avoid detection from virus and Trojan scanning. Some Trojan Construction Kits are: - Dark Horse Trojan Virus Maker Senna Spy Generator Trojan Horse Construction Kit Progenic mail Trojan Construction Kit Pandora's Box Droppers A dropper is a software or program that is specially designed for delivering a payload on the target machine. The main purpose of Dropper is to install malware codes on to the victim’s computer without alerting and avoiding detection. It uses various methods to spread and install malware. Trojan-Dropper Tools TrojanDropper: Win32/Rotbrow.A TrojanDropper: Win32/Swisyn Trojan: Win32/Meredrop Troj/Destover-C Wrappers It is a non-malicious file ...

The practice of steganography involves concealing a hidden message within an ordinary communication. This method is used to send a secret message to another person; nobody else in the path of the transmission will be aware of the secret message you intended to send. In real-world communications, this technique of obscuring secret signals has been employed for years. It has been utilized in digital communications ever since the development of digital communication.  There are numerous software tools for steganography. This software can hide your secret message using an image file, HTML file, DOC file, or any other kind of file. Steganography Tools 1.Whitespace Steganography 2.Image Steganography 3.Image Steganography 4.Document Steganography 5.Video Steganography 6.Audio Steganography 7.Folder Steganography 8.Spam/Email Steganography 9.Snow Tool 10.Open stego 11.Quick steo OpenStego Data can hide with password protection , it can extract when need.

DNS Tools allows you to Ping, Traceroute or look up DNS for any domain or IP directly from your Web browser. DNS Tools also allow you to view information about your own IP address using the My IP tool. This tool offers a user-friendly and graphical view of IP information. DNS Tools Whois Nslookup Domain Information Groper (DIG)

1 . SolarWinds Network Performance Monito r- This network monitor is based on SNMP,it includes a deep packet inspection function. It works on Windows Server.  2. ManageEngine Network Topology Tool with OpManage A network monitoring system that uses Ping sweeps and SNMP processes to watch performance. Available for Windows Server and Linux. 3. Paessler PRTG This monitoring package is a bundle of monitors, which are called sensors. One sensor, called a packet sniffer, notes packet header contents but does not capture them. It installs on Windows OS. 4. Splunk App for Stream An add-on for a well-known network data processor. Splunk Stream can perform a full packet capture or generate metadata by reading passing packet headers. It runs on Windows, Linux, macOS, FreeBSD, Solaris 11, and AIX. 5. Omnipeek A neat network monitor with some great data visualizations that sources data with a network analyzer. It works on Windows. 6. NetSpot An impressive wireless network analyzer with a s...

 HCLTech AppScan Standard is a Dynamic Analysis testing tool designed for security experts and pen-testers to use when performing security tests on web applications and web services. It runs automatic scans that explore and test web applications, and includes one of the most powerful scanning engines in the world. WebInspect is an automated dynamic testing solution that provides comprehensive vulnerability detection. Fortify WebInspect Benefits Vulnerabilities are discovered faster and earlier. Automation and agent technology can help you save time. Users can utilize crawl web technologies and modern frameworks. ScanCentral DAST helps you manage enterprise app security risk.

 Nessus is an open-source network vulnerability scanner that uses the Common Vulnerabilities and Exposures architecture for easy cross-linking between compliant security tools. Nessus employs the Nessus Attack Scripting Language (NASL), a simple language that describes individual threats and potential attacks. Retina's function is to scan all the hosts on a network and report on any vulnerabilities found. It was written by eEye, who are well known for their security research.  SAINT is a commercial vulnerability assessment and penetration system. It was originally developed in the late 1990's as free UNIX tool based on the open source SATAN scanner. Later it went commercial and broadened into a whole suite of tools for vulnerability detection, exploitation, and asset management. It is available on multiple platforms, including appliances (SAINTbox) and cloud-hosted (SAINTcloud). Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating...

  Nmap (“Network Mapper”) is an open source tool for network exploration and security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. While Nmap is commonly used for security audits, many systems and network administrators find it useful for routine tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Firewalk is an active reconnaissance network security tool that attempts to determine what layer 4 protocols a given IP forwarding device will pass. It works by sending out TCP or UDP packets with a TTL one hop greater than the targeted gateway SuperScan is a free conne...

 Different type of attacks 1 . Operating System Attacks - Due to Bug and Unpatched 2 . Misconfiguration attack 3 . Application type attack Virtual Machines 1. VMware 2. VirtualBox 3. Parallel Desktop 4. MobaLive CD 5. VMLite XP Mode 6. VirtualBox 7. Parallel Workstation

Network Threats Information gathering Sniffing & Eavesdropping Spoofing Session hijacking Man-in-the-Middle Attack DNS & ARP Poisoning Password-based Attacks Denial-of-Services Attacks Compromised Key Attacks Firewall & IDS Attacks Host Threats Malware Attacks Footprinting Password Attacks Denial-of-Services Attacks Arbitrary code execution Unauthorized Access Privilege Escalation Backdoor Attacks Physical Security Threats Application Threats Improper Data / Input Validation Authentication & Authorization Attack Security Misconfiguration Information Disclosure Broken Session Management Buffer Overflow Issues Cryptography Attacks SQL Injection Improper Error handling & Exception Management