log
bag

Recon For Bug Bounty, Penetration Testers & Ethical Hackers

3 weeks ago

Maximize your bug bounty hunting with expert-led recon course. Info gathering, tools & techniques covered.

Free USD $19.99

Created by: Vivek Pandit

Expired Coupon

Share if you liked:

Maximize your bug bounty hunting with expert-led recon course. Info gathering, tools & techniques covered.

Published en 27 Sep 2024

Udemy UK

What you'll learn

  • Web Reconnaissance: Unlocking the Mysteries of Websites for Competitive Advantage
  • Beyond the Main Domain: Expert Tips for Discovering Subdomains
  • URL Mining: Advanced Techniques for Gathering Valuable Data and Insights
  • Parameter Discovery: Advanced Techniques for Uncovering Valuable Data
  • Information Mining: How to Unleash the Power of Data Through Smart Gathering
  • Unlocking the Power of Information: Safely Gathering Sensitive Data from Websites
  • Uncover the Hidden Truth: Mastering Deep Recon on Websites

Requirements

  • Basic knowledge of linux is required
  • Basic knowledge of web application vulnerabilities

Description

Welcome to our comprehensive course tailored specifically for website reconnaissance, designed to empower bug bounty hunters, penetration testers, and ethical hackers. Geared towards intermediate-level learners, this course delves deep into all facets of recon on websites.

Explore fundamental concepts such as the essence of reconnaissance and its significance in bug bounty hunting and penetration testing. From subdomain enumeration to URL enumeration, parameter bruteforcing, and even crafting custom recon tools, we cover a broad spectrum of topics crucial for effective website reconnaissance and vulnerability assessment.

Our course meticulously outlines the complete methodology for website reconnaissance, bug bounty hunting, and penetration testing, ensuring a thorough understanding of each step. With videos segmented into easily digestible sections, students can grasp concepts at their own pace.

Access to a wealth of resources awaits in our dedicated resource section, comprising links, PDFs, and payloads utilized throughout the course. Elevate your skills in website reconnaissance and vulnerability assessment with our comprehensive learning experience.


Course Curriculum :

  1. Introduction

    1. Introduction to recon

  2. Subdomain enumeration from tools

    1. Subdomain enumeration #1

    2. Subdomain enumeration #2

    3. Subdomain enumeration #3

    4. Subdomain enumeration #4

    5. Subdomain bruteforcing

    6. Filtering unique domains

    7. Subdomain generator

  3. Subdomain enumeration from websites

    1. Subdomain enumeration from website #1

    2. Subdomain enumeration from website #2

    3. Subdomain enumeration from website #3

    4. Subdomain enumeration from website #4

  4. Filtering live domains

    1. Filtering live domains

  5. URL extraction from the internet

    1. URL extraction from the internet #1

    2. URL extraction from the internet #2

  6. Finding parameters

    1. Finding parameters

    2. Parameter bruteforcer

  7. Finding URL from past

    1. URL from past

  8. Sorting urls

    1. Sorting url for vulnerabilities

  9. Automation for replacing parameters with Payloads

    1. Automation for replacing parameters with Payloads

  10. Footprinting websites ( Website recon )

    1. Whatweb recon

    2. Netcraft

    3. Security headers

    4. Dnsdumpmaster

    5. Whois recon

    6. Mxtoolbox

    7. OSINT

    8. Maltego

  11. Browser addons for recon

    1. wappalyzer

    2. retire.js

    3. shodan

    4. Knoxx

    5. Hack-tools addon

  12. WAF idetification

    1. WAF identification

  13. Subdomain takeover

    1. HostileSubBruteForcer

    2. Sub404

    3. Subjack

  14. Fuzzing (Content-Discovery)

    1. dirb

    2. ffuf

  15. Port scanning

    1. Introduction to nmap

    2. Port specification in nmap

    3. Service and version detection from nmap

    4. Firewall bypass technique

  16. Fast port scanning

    1. nabbu

    2. masscan

  17. Visual recon

    1. Gowitness

  18. Google dorking

    1. Introduction to google dorking

    2. Understnding the URL structure

    3. Syntax of google dorking

    4. Google dorking operators

    5. Google search operators ( Part - 1 )

    6. Google search operators ( Part - 2 )

  19. Google dorking practical

    1. Introduction to practical google dorking

    2. How to find directory listing vulnerabilities ?

    3. How to dork for wordpress plugins and thems ?

    4. How to dork for web servers versions ?

    5. How to dork for application generated system reports ?

    6. Dorking for SQLi

    7. Reading materials for google dorking

  20. Tips for advance google dorking

    1. Tip #1

    2. Tip #2

    3. Tip #3

  21. Shodan dorking

    1. Intro to shodan dorking

    2. Shodan web interface

    3. Shodan search filters

  22. Shodan dorking practical

    1. Finding server

    2. Finding fIles and directories

    3. Finding operating systems

    4. Finding compromised devices and websites

  23. Shodan command line

    1. Introduction to shodan command line

    2. Practical shodan in command line

  24. Github dorking

    1. Introduction to github dorking

    2. Github dorking practical

  25. Vulnerability scanning

    1. Nuclei

    2. Wp-Scan

    3. Scanning with burpsuite

  26. Metasploit for recon

    1. DNS recon using metasploit

    2. Sub-domain enumeration using metasploit

    3. E-mail address finding

  27. Port scanning using metasploit

    1. TCP SYN port scan using metasploit

    2. SSH version detection

    3. FTP version enumeration

    4. MySQL version detection

    5. HTTP enumeration

  28. Payloads for bug bounty hunters

    1. Payloads for bug hunters and enetration testers

  29. How to create tools for recon ?

    1. SSRF finder tool

    2. XSS finding too

    3. URL extractor from javascript files

    4. Full website recon tool

  30. Bonus

    1. Bonus video

Thank you :)

Vivek Pandit


Who this course is for:

  • Bug bounty hunters, penetration testers, ethical hackers and etc.

You should keep in mind that the Coupons last a maximum of 4 days or until 1000 registrations are exhausted, but it can expire anytime. Get the course with coupon by clicking on the following button:

(Coupon valid for the first 1000 registrations): AE6586BEE025997C74B4
More Courses
MORE POPULAR
Get Coupon
Report Expiry
Udemy UK
Tags:
610 0

Related Posts

Sistema de asistencias en C# y SQLserver desde 0
Proyecto funcional y terminado
Spanish
1 month ago
Python para no matemáticos: De 0 hasta reconocimiento facial
Reconocimiento facial
Spanish
1 month ago
Xamarin básico: Una introducción al SDK de Microsoft
Una guía en el desarrollo de aplicaciones con esta poderosa herramienta
Spanish
1 month ago

Add a new comment

Featured Courses
Public Speaking Trainer: Enter the Presentation Training Biz
Speaking on the Telephone: Confidently Speak on the Phone
Voice Training: You Can Speak With Confidence
NSE6_FWB-6.4: Fortinet Network Security Expert Practice 2024
FCP_FGT_AD-7.4: FortiGate Administrator Practice test 2024
FCP_FMG_AD7.4: FortiManager Administrator Practice test 2024
FCP_WCS_AD-7.4: FortiWeb Cloud Service Practice test 2024
FCSS_SASE_AD-23: Fortinet Secure Access Service Practice
NSE4_FGT-7.0: Fortinet Network Security Expert Practice 24
FCP_FAZ_AD-7.4: FortiAnalyzer Practice test 2024
SAA-C01: AWS Solutions Architect Associate practice 2024
2V0-71.21: Professional VMware Application Modernization 24
Subscribe to our newsletter
Receive the latest Coupons and promotions Request Coupon

We use cookies on this website to give you the best experience on our site and to show you relevant ads. To learn more, read our Privacy Policy& Cookies policy.