Nmap for Ethical Hacking, Network Security, & Bug Bounties

This course starts with basics with TCP/IP Model and OSI Model and how it can be used in our day-to-day life. We will also learn TCP, UDP Packets, and Topologies to make our base stronger and then further move on to Ports and Protocols usage with practicals. This course covers all the Nmap Scan Types with Wireshark Packet Analysis for a better understanding of what’s happening behind the hood. The course also includes principles for each scan type and its Advantages and Disadvantages for Network Scans. 

With this course, you will learn Target Selection Techniques for Host, Subnet Scans & Host Discovery. You will also learn how to choose large hosts from files and choose random hosts and also how to exclude them from our scans. This course will cover port scanning and port knocking, which are useful for penetration Testing & CTFs. Then, we will see how to perform Service Version Detection for vulnerable services for exploitation. We will perform OS Detection and fuzzy scripts to identify the underlying targeted OS. This course will also cover Nmap output formats to save the output in different formats like HTML and XML. You will also learn how we can convert XML to CSV format for Recon of Bug Bounty & Penetration Testing. It will cover script scans and use Nmap’s powerful scripting engine for scanning. Next, we will cover the Nmap Script attack for different categories like Safe, Vulnerability, DOS, Exploit, Not Intrusive, and Boolean Expressions. We will cover Nmap for reconnaissance for Bug Bounty and Pentesting. In this course, you will go through Nmap protocols and exploitation in which you will see protocols such as FTP, SSH, HTTP, and their exploitation. Here, we will also cover HTTP Basic Auth Exploitation and PUT to RCE using Nmap. This course covers custom NSE scripts and their anatomy and teaches how to write your own scripts. You will understand how to cover Nmap timing parameters and firewall analysis to bypass firewalls with Nmap parameters. Next, you will learn Nmap Timing and Performance to tune Nmap Scans for better results and performance. You will learn how to bypass timing-based firewalls with Nmap. You will learn how to Bypass IDS and Firewalls with Mac Spoofing, cloak scan with decoys, Faking TTL, and add Bogus TCP/UDP Checksums. Lastly, we will write our own Python program for scanning and OS Detection based on Nmap. 

By the end of this course, you will have mastered Nmap to perform ethical hacking. 

Notes: This course is created for educational purposes only and all the websites the author has performed attacks are ethically reported and fixed. Testing any website which doesn’t have a Responsible Disclosure Policy is unethical and against the law, the author doesn’t hold any responsibility.