PentesterLab is an easy and straight forwards way to learn the basics of penetration testing. It provides vulnerable systems in a virtual image, and accompanying exercises that can be used to test and understand vulnerabilities.
Just decide what course you want to follow, download the course and start learning. You can easily run the course using VMware, no Internet access is required.
What will you learn?
- Basics of Web
- Basics of HTTP
- Detection of common web vulnerabilities:
- Cross-Site Scripting
- SQL injections
- Directory traversal
- Command injection
- Code injection
- XML attacks
- LDAP attacks
- File upload
- Basics of fingerprinting
Requirements
- A computer with a virtualisation software
- A basic understanding of HTTP
- A basic understanding of PHP
- Yes, that’s it!
You can download the materials and ISO images here:
web_for_pentester.pdf (2.4M)
web_for_pentester.iso (64-bit, 175M, MD5: f6e0df10de6d410293ba7a838d31f917)
web_for_pentester_i386.iso (32-bit, 172M, MD5: 5e6cdf5fa3356a4c08b34ccd076a63ae)
Or read more here.
This is great, thanks. We will include this in our blog and link back to you. This is incredibly helpful, especially for new hires.
It ask for the password after installing in VM ware, wjats the password. ?
I want to learn hacker. I have always dreamt of been a good. But one teaches hacking. I wish there was a school for hacking