Short Course

Attack Surface Discovery using OWASP Amass

Learn how to identify potentially vulnerable external assets using open-source tools.

8 Hours of video content

Advanced

Certificate of Completion Included

Check out Subscription Plans

Overview What You Will Learn Curriculum Instructor

Course Overview

Modern organizations often have hundreds to thousands of external assets exposed on the internet. Discovering and mapping these assets is essential. If you are a bug hunter, penetration tester, or red teamer, these assets may be vulnerable, allowing trivial and undetected access to a target’s environment. Likewise, if you are responsible for defending these assets, these assets need to be cataloged, hardened, and configured with alerts.

Asset management and discovery is a difficult problem to solve. Organizations often grow organically through acquisitions or partnerships. In some organizations, developers are given the freedom to deploy assets externally using cloud solutions like AWS. There exist several tools to discover external assets for organizations but Amass is considered the industry-standard tool for asset discovery. In this course, we will cover how to install, configure, and use Amass to identify and discover external assets.

By the end of the course, you will be able to attack or protect an organization’s assets and have the beginnings of an automated scanning pipeline created.

What You Will Learn

Learn how to install
configure
and use Amass effectively
Learn how to identify organizational assets through passive methods
Get insight on how to identify organizational assets through active methods
Create scripts for Amass using its scripting engine
Learn how to use Amass in a scanning pipeline

Program Curriculum

Course Welcome and Introduction
A Quick Primer on DNS
How Amass Works Under the Hood
Active vs. Passive and OAM Tools
$7 Million Cybersecurity Scholarship by EC-Council
Chapter 1 Quiz

Installing via Docker
Installing via a Package Manager
Installing from Source
Configuring API Keys
Chapter 2 Quiz

Performing Horizontal Discovery
Active vs. Passive Considerations
The Intel Command in Action
Chapter 3 Quiz

Performing Vertical Discovery
The Enum Command in Action
Chapter 4 Quiz

Purpose of the Graph Database
Interacting with and Configuring Databases
Using OAM Tools to Track and Visualize Data
Chapter 5 Quiz

Overview of Amass Scripting
Creating an Amass Script
What is a Scanning Pipeline?
Creating a Scanning Pipeline using Amass
Chapter 6 Quiz

Active Directory Process
Conducting Active Discovery
Chapter 7 Quiz

Key Takeaways from the Course

Load more modules

Instructor

Nathan Tucker

Nathan Tucker is a Staff Security Engineer at Praetorian. He has worked in offensive security as a consultant for multiple years and has conducted numerous network, web, mobile, and thick-client engagements. During these engagements, he has used Amass extensively to discover client assets and has contributed to and developed scanning pipelines. One of the key roles of his job is to educate both clients and junior consultants on how to effectively identify, exploit, and patch discovered assets. He hopes he can continue sharing that knowledge with anyone interested in this course.

Buy this course now

$99.99

Get Immediate access for one year today!

Upgrade to Pro Plans and Get Full Access Today!

Get this course, along with 700+ courses and 50+ learning paths and more in one subscription. Learn more

Unlock All Access

Plans start from $33/mo. Cancel anytime.

Join over 1 Million professionals from the most renowned Companies in the world!

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans

Annual Plans

Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

^$ 499.00

Billed annually or $59.00 billed monthly

Get Started Now

Start your 7-day trial for $1

What is included

700+ Premium Short Courses
50+ Structured Learning Paths
Validation of Completion with all courses and learning paths
New Courses added every month

Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

^$ 599.00

Billed annually or $69.00 billed monthly

Get Started Now

Start your 7-day trial for $1

Everything in Pro and

800+ Practice Lab exercises with guided instructions
150+ CTF Challenges with detailed walkthroughs
New Practice Labs and Challenges added every month
3 Official EC-Council Essentials Certifications¹ (retails at $897!)
Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

15 Must Have Tools for Pentesters

Short Course

15 Must Have Tools for Pentesters

Vulnerability Assessment and Pentesting

Upgrade your penetration testing skillset by adopting the best tools available in the market!

Upgrade your penetration testing skillset by adopting the bes...

$59.99

Intermediate

9 hr 15 m

Hello
Kali for Penetration Testers

Short Course

Kali for Penetration Testers

Vulnerability Assessment and Pentesting

Ethical Hacking with Kali Linux

Ethical Hacking with Kali Linux

$69.99

Beginner

6 hr 49 m

Hello
Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

Short Course

Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

Vulnerability Assessment and Pentesting

The comprehensive course to secure & crack WEP/WPA/WPA2 key and perform MITM attack from scratch using Kali Linux 2.0.

The comprehensive course to secure & crack WEP/WPA/WPA2 k...

$69.99

Intermediate

5 hr 12 m

Hello
Getting Started with Bug Bounty Hunting

Short Course

Getting Started with Bug Bounty Hunting

Vulnerability Assessment and Pentesting

Perfect Guide for Making You a Noob to Pro Bug Hunter

Perfect Guide for Making You a Noob to Pro Bug Hunter

$79.99

Beginner

2 hr 45 m

Hello
Web Hacker’s Toolbox: Tools Used by Successful Hackers

Short Course

Web Hacker’s Toolbox: Tools Used by Successful Hackers

Vulnerability Assessment and Pentesting

Discover the Tools Used by Successful Hackers and Learn How to Use Them in Your Own Penetration Testing Projects

Discover the Tools Used by Successful Hackers and Learn How t...

$59.99

Intermediate

3 hr 4 m

Hello
Full-Stack Attacks on Modern Web Applications

Short Course

Full-Stack Attacks on Modern Web Applications

Vulnerability Assessment and Pentesting

Learn About HTTP Parameter Pollution, Subdomain Takeover, and Clickjacking

Learn About HTTP Parameter Pollution, Subdomain Takeover, and...

$59.99

Intermediate

0 hr 59 m

Hello
Learn Hacking Using Raspberry Pi from Scratch

Short Course

Learn Hacking Using Raspberry Pi from Scratch

Vulnerability Assessment and Pentesting

Improve your Ethical Hacking Skills by using your portable Raspberry Pi device for Penetration Testing/Security Auditing.

Improve your Ethical Hacking Skills by using your portable Ra...

$69.99

Beginner

8 hr 20 m

Hello
Digital Forensics for Pentesters - Hands-on Learning

Short Course

Digital Forensics for Pentesters - Hands-on Learning

Vulnerability Assessment and Pentesting

Detect and backtrack cyber criminals and hackers with digital forensics.

Detect and backtrack cyber criminals and hackers with digital...

$69.99

Beginner

5 hr 10 m

Hello