English | MP4 | AVC 1280×720 | AAC 48KHz 2ch | 4.5 Hours | 1.01 GB
40+ Videos to learn how to use Android to test the security of networks and computer systems.
In this course you will start as a beginner with no previous knowledge about penetration testing. The course will start with you from scratch, from preparing your Android device and computer, installing the needed apps and will finish up with examples of real life scenarios when testing the security of computer systems.
This course just like my other courses focuses on the practical side penetration testing without neglecting the theory behind each attack, for each attack you will learn how that attack works and then you will learn how to practically launch that attack, this will give you full understanding of the conditions which allow this attack to be successfully executed, this knowledge will help you to detect and sometimes prevent this attack from happening. The the attacks explained in this course are launched against real devices in my lab.
The Course is Divided into four main sections:
- Preparing: this section will take you through the steps of of preparing your computer and installing NetHunter (an Android penetration testing platform) on your Android device. You will also learn how to use the main menus of NetHunter, and as a bonus I added three lectures to teach you how to install Kali Linux (a penetration testing OS) on your computer.
- Information Gathering:in this section we still don’t know much about penetration testing , all we have is an Android device with NetHunter installed on it, you will learn how to start gathering information about WiFi networks around you, not only that but you will also learn how to map your current networking, displaying the connected devices and information about them such as their IP address, Mac Address, OS and running services/programs. You will also learn how to connect an external wireless card to your Android device and prepare it to be used to pentest WiFi keys.
- Spying: I this section you will learn what is meant by MITM (Man In The Middle), how people achieve that and how detect if you are being MITM’ed. We will disscuss three methods to become the MITM, these methods are: Bad USB MITM, ARP Poisoning and using a Honeypot point. When somebody becomes the MITM packets will flow through their device, you will learn how to store these packets, and analyse them later using Wireshark.
- Exploitation: In this section we will have a look on a number of exploitation methods that can be used to compromise your device weather it runs Windows/Linux/OSX. First you will learn why you should never leave your computer locked on a login screen as you will see login screens can be bypassed on both OSX and Windows. You will also see why you should be careful when allowing people to charge their Android device from your computer as they can gain full access to your computer as soon as you an Android device is connected to it via USB. You will also see how downloaded files can be backdoored on the fly, this means that you should be very careful when downloading files from the internet even if you were downloading them from a trusted website, make sure the link is HTTPS and use the discussed ARP Spoof detection method to ensure that you are not being MITM’ed .
- Detection & Protection: In this section you will learn three methods to detect ARP Spoofing/ ARP Poisoning Attacks, you will also learn how to user Wireshark to detect other suspicious activities in your network. We will also discuss how to protect against these MITM attacks and prevent them from happening.
Preparing Your Android Device
Installing & Configuring Nexus Root Toolkit
Installing Device Drivers
Unlocking & Rooting The Device
NetHunter Preview and my lab
3. Installing Kali Linux As Virtual Machine (Optional)
Intro About Kali Linux & Installation Options
Installing Kali Linux using iso Image
4. Information Gathering
Discovering Wireless Networks – Wardriving
Preparing Your Device To Pentest WiFi Keys – WEP/WPA/WPA2
Basic Network Mapping – Using Wifi Analyzer
Basic Network Mapping Using Zanti2
Advanced Network Mapping Using Zanti2 & Nmap
MITM (Man In The Middle) Methods
MITM Method 1 – Bad USB Attack
MITM BadUSB Attack – Sniffing Data
MITM BadUSB Attack – Bypassing HTTPS
MITM BadUSB Attack – DNS Spoofing
MITM Method 2 – ARP Poisoning
ARP Poisoning using arpspoof
ARP Poisoning Using Zanti2
ARP Poisoning – Intercepting Downloaded Files
ARP Poisoning – other attacks
MITM Method 3 – Using a Honeypot
Configuring Mana-Toolkit to Create a Honeypot
Storing Data from the Honeypot
Bypassing Windows/OSX Logins – Setup
Bypassing Windows/OSX Logins
HID Keyboard Attack- simple windows command
HID Keyboard Attack – Powersploit option
Using Metasploit Meterpreter
Using Veil Evasion
Rubber Ducky Scripts
Rubber Ducky Scripts – Download & Execute
Ducky Scripts – OSX Shell
Ducky Linux Shell
Replace Downloadeds With Files
Backdoor Downloads On The Fly Using BDFproxy
7. Detection & Protection
Detecting ARP Poisoning Attacks
Detecting Suspicious Activity in the Network & Solutions to ARP Poisoning