Career in Pentesting Field
To become a successfull hacker if you are totally new/beginner then here is my guidance for you.
It took more than 3 years and you can say there is no time limit to become a successfull hacker because everytime we learn new things and everysecond new hacker discover new stuffs.
If you ask pentester then they will tell you to start with learning coding.
Yes because coding is the key to success.
I heard this from a hacker :->
"try to write your own code, rather than using someone else's code and exploits.This will help you to gain whatever you want and before doing things, know every stuffs and how those things work.Hacking is all about Knowledge and skills"
<=== So start from scratch ===>
You should familiar with programming language.
For Starting ->
1. Learn Fundamental of Programming Language from Lynda
2. Then move to Python Language as your first language [1.Automate The Boring Stuff With Python great resource & 2.Python for Pentesters & then 3. Black Hat Python]
- 1. Download Here
- 2. Download Here
- 3. Download Here
3. Understand basics of C/C++ language.
[Again use torrent]
4. Be familiar with Bash Scripting Language
5. Web Programming Language -> html,css,js,php,mysql
- Start with codecademy
Please use torrent to find udemy course related to learn web programming language.
====================================
Now start with Linux
1. LINUX UTILITIES COOKBOOK
2. Linux Bible 9th Ed (2015)
====================================
Then Kali linux Books :->
1. pwk.1.0 [google it]
2. Kali Linux Cookbook
3. Kali Linux Web Penetration Testing Cookbook [Latest]
I specially like pwk ebook
====================================
To familiar with commands for both Windows & Linux please read this ebook :->
RTFM [Red Team Field Manual ]
====================================
Now read these following ebooks to start your journey in hacking :->
1. ethical hacking and penetration testing guide
2. Mastering Wireshark - Charit Mishra
3. the-web-application-hackers-handbook
4. The Hacker Playbook 2 Practical Guide To Penetration Testing
====================================
Friends to learn Linux with practical you should use virtualbox or vmware which is virtual machine and you can use many Operating System in this machine.
Please don't think to use Linux as main OS for starting.
Use Window OS as main O and then use Linux under Window using Virtual Machine.
For starting Use Ubuntu to learn Basics of linux using those ebooks which i mentioned above.
And Either Kali or Backbox or Parrot OS as your attacker Machine in Virtual Machine.
===================================
Friends i am not telling you here to make your pentesting lab because when you read those ebooks then you already learn to make your own Pentesting Lab
===================================
Best Tools for Pentester :->
1. Burpsuite
2. Owasp Zap
3. Nikto
4. Nmap
5. Seclists as Fuzzdb
6. Webscarab
7. recon-ng
8. Netcat
9. Dirbuster
Mostly pentester use above tools.
And you should mostly relies on your Brain not on tools but you must use above tools which really help pentesters.
In my this blog i will make tutorials on using those tools like using NMAP ,NetCat, Burpsuite etc
===================================
Some awesome Youtube Channel Collection :->
(I will add time to time)
1. SSTec Tutorial
2. aakash choudhary
3. Pentesting With Spirit
4. Penetration Testing in Linux [highely Suggested]
5. Amir Muzaffar
6.webpwnized [Highely Suggested]
===================================
Hello friends i also want to say that if you are reading ebooks and want to also learn practically then start with war game because it also make your knowledgee increase
Here is link :->
overthewire.org/wargames/
Also friends stay tune with vulnhub.com
as this provide many vulnerable machine to practice.
When you stuck in practicing then see Walkthrough either in google or youtube or in vulnhub.com
===================================
For Bug hunting :->
1.https://forum.bugcrowd.com/t/researcher-resources-tutorials/370
2. h1.nobbd.de
In last i want to say just PRACTICE PRACTICE PRACTICE PRACTICE & JUST PRACTICE
Thanks for reading. Stay tune with my blog
THANKS
regards : CodeNinja a.k.a. Aakash Choudhary
Nice tut bro
ReplyDeleteGood going :*
ReplyDeleteAlso check my blog and say how it is
http://bornhackerz.blogspot.in
gud
DeleteGood going :*
ReplyDeleteAlso check my blog and say how it is
http://bornhackerz.blogspot.in
Well very nice blog brother. (Y)
DeleteAwesome as always codeninja :)
ReplyDeleteawesome post dear :)
ReplyDeleteCould be prettier, but I don't judge too harshly on looks alone. :)
ReplyDeleteThis is a pretty awesome tutorial.
Thanks brother. Even i forget to tell about to grasp knowledge on basics of Networking
DeleteNice Blog. Thanks For Sharing!
ReplyDeleteDotNet Training In Chennai