SikhoLive Ethical Hacking/Cyber Security Program: Advanced

---

Chapter 1: Introduction to Ethical Hacking

1.1 What is Ethical Hacking?
1.2 Role of Ethical Hackers in Cybersecurity
1.3 Hacking vs. Ethical Hacking
1.4 Key Principles of Ethical Hacking (Legality, Permission, Confidentiality)
1.5 Ethical Hacking Process Overview
1.6 Real-World Applications of Ethical Hacking

Chapter 2: Understanding Cybersecurity Basics

2.1 What is Cybersecurity?
2.2 Types of Threats and Attacks
2.3 Vulnerabilities and Exploits
2.4 The CIA Triad (Confidentiality, Integrity, Availability)
2.5 Security Frameworks and Standards
2.6 Careers in Ethical Hacking and Cybersecurity

Chapter 3: Ethical Hacking Tools Overview

3.1 Popular Hacking Tools and Categories
3.2 Network Scanners, Vulnerability Assessment Tools, Exploitation Frameworks
3.3 Introduction to Kali Linux
3.4 Setting Up a Hacking Lab (Virtualization & VMs)
3.5 Using Command-Line Interfaces for Hacking

Chapter 4: Networking Fundamentals for Hackers

4.1 Basics of Networking (LAN, WAN, MAN, PAN)
4.2 Network Components (Switches, Routers, Modems, Access Points)
4.3 Client-Server vs. Peer-to-Peer Models
4.4 Network Topologies (Star, Bus, Ring, Mesh)
4.5 IP Addressing & Subnetting (IPv4, IPv6, CIDR, Subnetting Tools)
4.6 Domain Name System (DNS) & Attacks
4.7 TCP/IP Protocol Suite & Key Protocols
4.8 OSI Model and Attack Vectors
4.9 Ports and Services (Well-Known Ports, Port Scanning Tools)
4.10 Network Protocols & Exploits (ARP, ICMP, SNMP, SMTP)
4.11 NAT & VPNs (Benefits, Vulnerabilities, Testing)
4.12 Firewalls, IDS, and IPS
4.13 Network Monitoring & Traffic Analysis (Wireshark, Packet Analysis)
4.14 Common Network Attacks (MITM, DoS/DDoS, Spoofing, Hijacking)
4.15 Wireless Networking Basics (Wi-Fi Standards, Encryption)
4.16 VPNs vs. Proxies (Identity Masking & Weaknesses)
4.17 Practical Networking Scenarios for Hackers (Lab Simulations, Troubleshooting Tools)

Chapter 5: Reconnaissance and Information Gathering

5.1 What is Reconnaissance?
5.2 Passive Reconnaissance Techniques (OSINT, Social Media, Google Dorking, WHOIS, Metadata, GitHub)
5.3 Active Reconnaissance Techniques (Nmap, Subdomain Enumeration, Banner Grabbing, Shodan)
5.4 Reconnaissance Tools (Maltego, TheHarvester, Recon-ng, FOCA, Netcat, Metasploit)
5.5 Social Engineering Reconnaissance (Pretexting, Phishing, Dumpster Diving)
5.6 DNS and Domain Reconnaissance (nslookup, dig, DNSenum, Zone Transfers)
5.7 Website Footprinting (Wappalyzer, Dirbuster, Certificate Analysis)
5.8 IP Address Reconnaissance (Geolocation, Traceroute, ISP Mapping)
5.9 Identifying Vulnerabilities During Recon (CVE, NVD, ExploitDB, Zero-Day Tracking)
5.10 Wireless Reconnaissance (Airodump-ng, Kismet, Hidden SSIDs)
5.11 Human Reconnaissance (LinkedIn, Email Harvesting, Spear-Phishing Targets)
5.12 Advanced Information Gathering (Tor, Dark Web, APIs, Pastebin)
5.13 Automating Reconnaissance (Python/Bash, LazyRecon, Automation Workflows)
5.14 Avoiding Detection During Reconnaissance (IP Rotation, Request Throttling, Anonymization)
5.15 Countermeasures Against Reconnaissance (Hardening, Security Audits, Hiding Metadata)

Reference Tools:

• BuiltWith
• ViewDNS
• Wappalyzer
• LazyRecon
• Maltego
• Exploit DB

Chapter 6: Scanning Networks

6.1 Network Scanning Methodologies
6.2 Port Scanning (TCP, SYN, ACK)
6.3 Vulnerability Scanning (Nessus, OpenVAS)
6.4 Banner Grabbing & Fingerprinting
6.5 Creating Scanning Reports

Chapter 7: System Hacking

7.1 Gaining Access to Systems
7.2 Password Cracking Techniques (John the Ripper, Hydra)
7.3 Encryption & OS Password Recovery (Windows & Linux)
7.4 Tools: Lazersoft, Utilman & CMD Recovery
7.5 Keyloggers & Spyware
7.6 Privilege Escalation Techniques
7.7 Clearing Logs & Covering Tracks
7.8 Password Attacks (Guessing, Dictionary, Brute Force)
7.9 Post-Access Password Recovery/Modification (CMD in Windows/Linux)

Chapter 8: Wireless Network Hacking

8.1 Wi-Fi Standards and Encryption
8.2 Common Wireless Vulnerabilities
8.3 Cracking WEP/WPA/WPA2/WPA3 Passwords
8.4 Tools (Aircrack-ng, Wireshark, Reaver)
8.5 Attacks (Rogue AP, Evil Twin, Deauthentication)

Chapter 9: Web Application Hacking

9.1 Anatomy of Web Applications
9.2 Common Vulnerabilities (SQLi, XSS, CSRF)
9.3 Scanning Tools (Burp Suite,or OWASP ZAP)
9.4 DoS/DDoS Attacks on Web Applications
9.5 SSL/TLS Security
9.6 Exploiting Web Applications

Chapter 10: Exploitation and Post-Exploitation

10.1 Exploits and Payloads
10.2 Using Metasploit Framework
10.3 Gaining Persistent Access
10.4 Post-Exploitation Techniques
10.5 Extracting Sensitive Information

Chapter 11: Malware and Payloads

11.1 Types of Malware (Viruses, Worms, Trojans, Ransomware)
11.2 Creating & Using Custom Payloads
11.3 Malware Delivery via Social Engineering
11.4 Antivirus Evasion Techniques
11.5 Basics of Reverse Engineering

Chapter 12: Social Engineering

12.1 Psychology of Social Engineering
12.2 Attack Types (Phishing, Pretexting, Baiting)
12.3 Crafting Social Engineering Scenarios
12.4 Defense Strategies Against Social Engineering
12.5 Case Studies of Real Attacks

Chapter 13: Mobile Device Hacking

13.1 Mobile OS Overview (Android, iOS)
13.2 Common Mobile Vulnerabilities
13.3 Exploiting Mobile Applications
13.4 Mobile Penetration Testing
13.5 Mobile Hacking Tools

Chapter 14: Cryptography for Ethical Hackers

14.1 Basics of Encryption and Hashing
14.2 Symmetric vs. Asymmetric Encryption
14.3 Cryptanalysis Techniques
14.4 Cracking Encrypted Data
14.5 Tools (GPG, Hashcat)

Chapter 15: Cloud Security and Hacking

15.1 Cloud Computing Basics
15.2 Common Cloud Vulnerabilities
15.3 Exploiting Cloud Infrastructure
15.4 Cloud Pen-Testing
15.5 Cloud Security Assessment Tools

Chapter 16: Internet of Things (IoT) Hacking

16.1 Introduction to IoT Devices
16.2 IoT Security Challenges
16.3 Identifying IoT Vulnerabilities
16.4 Exploiting IoT Devices
16.5 Securing IoT Ecosystems

Chapter 17: Advanced Penetration Testing Techniques

17.1 Penetration Testing Methodologies
17.2 Writing Custom Exploits
17.3 Bypassing Technique of Firewalls & IDS
17.4 Reporting & Documentation

Chapter 18: Incident Response and Forensics

18.1 What is Incident Response?
18.2 Steps in Incident Handling
18.3 Digital Forensics Basics
18.4 Evidence Collection & Preservation
18.5 Forensic Tools (Autopsy, FTK, EnCase)

Chapter 19: Legal and Ethical Aspects of Hacking

19.1 Global Legal Frameworks
19.2 Importance of Pen-Testing Agreements
19.3 Consequences of Illegal Hacking
19.4 Responsible Disclosure

Chapter 20: Future of Ethical Hacking

20.1 Emerging Threats and Trends
20.2 Ethical Hacking in AI & ML
20.3 Career Pathways and Certifications
20.4 Building a Career in Ethical Hacking
20.5 Continuous Learning Resources

Chapter 21: Staying Anonymous on the Internet (Optional)

21.1 Introduction to Online Anonymity
21.2 Understanding Online Tracking (Cookies, Fingerprinting, IP-based Tracking)
21.3 Principles of Anonymity
21.4 Anonymizing Internet Connections (VPNs, Proxies, Tor)
21.5 Secure Browsers & Anonymous Search Engines
21.6 Encrypted Communication (Messaging, Email, VoIP)
21.7 Protecting Personal Information (Pseudonyms, Burner Accounts, Masking Emails)
21.8 OS Security (Tails OS, Qubes OS, Disk Encryption)
21.9 Mobile Device Anonymity (GrapheneOS, App Security, Location Services)
21.10 Cryptocurrency & Financial Anonymity (Bitcoin, Monero, P2P Trading)
21.11 Anonymous File Sharing & Metadata Removal
21.12 Advanced Threat Protection (ISP Tracking, Traffic Correlation, Decentralized DNS)
21.13 Ethical Considerations of Anonymity
21.14 Tools for Anonymity (Orbot, Whonix, Anonsurf)
21.15 Common Mistakes (IP Leaks, Fingerprinting, Info Reuse)
21.16 Testing Anonymity (Leak Tests, Fingerprint Simulations)
21.17 Challenges to Anonymity (AI Tracking, Surveillance, Privacy Laws)
21.18 Case Studies (Whistleblowers, Breach Lessons)
21.19 Future of Anonymity (Decentralized Privacy Tools, Emerging Tech)

---