The document outlines the fundamentals of ethical hacking, emphasizing its role in network security by preparing individuals to think like malicious hackers in order to defend against them. It details the various types of hackers, the motivations behind hacking, and the phases of ethical hacking including planning, executing, and reporting. Additionally, it discusses why organizations recruit ethical hackers to identify vulnerabilities and improve security measures.

1. ETHICAL HACKING
Hack to Learn

2. Remember This!
This Program teaches you 100% Network
OffensiveTraining and not Defensive.

3. BeforeYou Start
■ Lab Environment
VMWARE should be installed with following machines
– Windows 10
– Windows 7
– Android
– Windows server 2012
– Kali Linux
– Ubuntu
Check Network Connectivity with ping command between all machines

4. Computer System
■ Charles Babbage was considered to be the father of computer.
■ Ada Lovelace was the mother of Computer.

5. Basic Programming Structure

6. Windows System
■ Software
■ Shell
■ Kernel
■ hardware
■ i/o devices

7. Windows File System

8. Hidden Securities ofWindows System
■ Registry
■ PowerShell
■ Safe mode
■ Services
■ Processes
■ Cmd

9. Linux System

10. Linux File System

11. Comparison between Linux &Windows file system

12. Linux vsWindows

13. System Booting Process

14. SecurityAttack vectors

15. Motivation
Objectiv
e
Method Vulnerabilit
y Attacks
 InformationTheft
 Manipulating Data
 Taking Revenge
 Damaging Reputation
 Disrupting Business continuity
 Creating Fear & Chaos

16. Exploiting system vulnerabilities and compromising security
controls to gain unauthorized access to the system resources.
Modifying system or application features to achieve a goal
outside of the creator’s original purpose.
Steal, pilfer & redistribute intellectual property leading to
corporate or individual loss.
Hacking
Refers to
Involves
Used to

17. Phases of Hacking

18. Intelligent individuals with excellent computer skills with the
ability to create and explore into the computer’s software &
hardware.
For some hackers hacking is a hobby to see how many
computers or network they can compromise.
Their intension is either be to gain knowledge or to poke around
to do illegal things.
Some do hacking with malicious intent behind their escapades
like stealing business data, card info, social security numbers,
email credentials etc.
Hacker

19. Types of Hackers
■ Whitehat Hacker
■ Greyhat Hacker
■ Blackhat Hacker
■ Sucidial Hacker
■ Hobbist
■ Hactivist
■ Script Kiddies

20. Types of Hacker

21. Types of Hacker

22. Ethical Hacking

23. Why Ethical Hacking is necessary?
To Beat a Hacker you have to think like one!
■ Ethical Hacking is necessary as it allows to counter attacks from malicious hackers by
anticipating methods used by them to break into a system.
■ To provide adequate protection, update & patch to a information system.
■ Restrict unauthorized person from gaining access & manipulating access phases.
■ Maintain the information security measures in compliance to industry and legal
standards.

24. Scope and Limitations of Ethical Hacking
Scopes
■ Ethical Hacking is a crucial
component of risk assessment,
auditing, counter fraud and
information systems security best
practices.
■ It is used to identify risks and
highlight the remedial actions and
also reduces information and
communication technology (ICT)
costs by resolving these
vulnerabilities.
Limitations
■ However unless the business first
know what is at that they are looking
for and why they are hiring an
outside vendor to hack systems in
the first place, chances are there
would not be much gain from the
experience.
■ An ethical hacker thus can only help
the organization to better
understand their security system but
it is up to the organization to place
the right guards on the network.

25. Why Organizations recruit Ethical Hackers?
 To prevent hackers from gaining access to organization’s information system.
 To uncover vulnerabilities in systems & explore their potential at risk.
 To analyze & strengthen an organization’s security posture including policies, network
protection infrastructure & end-user practices.

26. Skills of an Ethical Hacker

27. PenetrationTesting

28. Phases of PenetrationTesting
Pre- Attack
Phase
• Planning &
preparation
• Methodology
Design
• Network
information
gaining
Attack Phase
• Penetrating
parameter
• Acquiring target
• Escalating
privileges
• Execution,
implementation &
retracting
Post-Attack
Phase
• Reporting
• Clean-up tracks
• Artifacts
destruction

29. At the end of the Day
■ EssentialTerminologies
– HackValue
– Zero-Day Attack
– Vulnerability
– Daisy Chain
– Exploit
– Doxing
– Payload
– Bot
– Pen-Testing