I am just practicing my note-taking skills. For more details, watch a YouTube video.
1. Linux -
- Commands
- File System
- Safety
- Getting Familiar
- Understanding Security
2. Basics of Networking -
- How internet works?
- Request and Response
- Layer of Internet
3. Ethical Hacking -
- Understanding ports and their services
- Attacking different ports
- Knowing various tools — Nmap, Yshark, Burpsuit, More
- Understanding system level threats
- Maintaining security
4. Web Basics -
- How web works?
- Basics of programming language — HTML, JS
- Understanding data transactions
5. OWASP Top 10 -
- What is OWASP Top 10 Web ?
- Attacking techniques
- Securing techniques
- Countermeasures
6. Vulnerability Assessment -
Performing VAPT (Vulnerability Assessment & Penetration Testing)
- Gathering Attack Vectors
- Testing Major Vulnerability
- Performing Bypassing Attacks
- Getting Sum Controls
- Escalation Control
- Test within scope area
Following proper pattern
- Nothing Misses
- Creates a flow
- Develops mindset
Designing a pattern
- Things which are necessary on top
- Things you can perform better take it on priority
- Adding proper tools
- Adding proper flow
- Continuously upgrading pattern for best
7. Books for penetration testing -
- The web application Hackers Handbook
- Hacking the art of exploitation — Jon Erickson
- The basics of ethical hacking and penetration testing (Second Edition) — Patrick Engebretson
- The Hacker Playbook
- The Gray Hat Hacking (The ethical hacker’s handbook)
8. Practice -
Online
- Hack The Box (Paid and Free Both Available)
- Hack This Site (Free)
- Try Hack Me (Free and Paid Both)
- Portswigger Academy (Free)
- Pentester Lab (Paid and Free Both)
Offline (Free)
- Vulnhub
- OWASP Juice Shop
- DVWD
- Multilidae
- Web Goat
9. Compete -
- CTF Time
- PICO CTF
10. Note Taking -
- Cherry Tree
- One Note
- Evernote
- Notion
- Obsidian
After following a proper roadmap, you can participate in Bug Bounty Programs to earn rewards.
Remember, practice is the key to success.
