A beginners guide on how and where to start with ethical hacking

A beginners guide on how and where to start with ethical hacking -


Experts in the field of computer security can work in a variety of positions which includes –

Network security, web application security, auditor, pen-tester, cyber security consultant, network administrators, system

administrators, server security, cyber security analysts, forensics experts, risk management experts, malware/spyware

analyst, database security etc.


Skills required:


Python Programming -It’s the new BASIC. Python is a heavily used high-level programming language. You can use it to create

web apps, games etc. It is fast, powerful and easy to learn and understand hence is probably the reason most hackers

prefer Python for scripting. Minimum coding maximum results.


C Programming - C is a high-level programming language that is used for developing firmware or applications. C is very

powerful and is also a building block for many other currently known languages. The Linux kernel is written in C. Need I

say more?


Java Programming - Java is a general-purpose computer programming language intended to let application developers "write

once, run anywhere", on all platforms that support Java. There are many useful hacking tools written in Java like Burp-

suite or Vega web vulnerability scanner.


PHP Programming-  (Hypertext Pre-Processor) is a server-side web programming language that is widely used for web

development. PHP is helpful when you perform SQLi attacks as login pages and other web based forms are handled by PHP.


Also spend time with Oracle MySQL and MsSQL
Learn Linux - It is difficult to use when compared to Windows at first, but its worth. There is a gigantic community on

the internet to help you through it.  Linux doesn’t require separate drivers. All the required drivers are already

included in the Linux Kernel that comes with every single Linux installation.
Grab a good book and learn the inside out of Windows Architecture

Learn networking - Network keeps the Internet alive. Network connects everything together. It is important to know as much

as you can on how networks work, workings of IP address,MAC address, OSI/TCP models ,the large range of 65535 ports,

protocol, DNS, DHCP, SNMP, ARP, NAT,router,switch, server client architecture and subnet mask.


Becoming a hacker is a long long process don’t get-in just because someone said its cool, is not the domain for you.


Some terms used in hacking:


Pen-testing – method of testing security mechanisms and finding vulnerabilities that an attacker could exploit.


Vulnerability - is a weakness in a system, network or application which allows an attacker to penetrate and perform other

secondary attacks.


Exploit – using software and scripts in such a way that it helps you to achieve desired results by taking advantage of the

flaws.


Payloads - the payload is the part of malicious programs or scripts capable of performing malicious activities when

certain event is triggered.


Here are some books you can start with:


Python –


Learn Python the hard way
Dive into Python
Python Pocket Reference.


C –


Let us C
C: A Reference Manual


Java –


Head first Java Java for Dummies


PHP -


PHP & MySQL: Novice to Ninja
PHP and MySQL for Dynamic Web Sites: Visual QuickPro Guide (4th Edition)


Oracle MySQL –


Learning MySQL, by Seyed Tahaghoghi, Hugh Williams
MySQL Pocket Reference: SQL Functions and Utilities


Linux –


Learn Linux From Scratch
Instant Kali Linux
Kali Linux Cookbook
Windows Architecture –
Windows Internals, 6th edition
Windows Programming/Windows System Architecture
Networking –
Computer Networks by Andrew Tanenbaum
Networking: A Beginner's Guide, Sixth Edition (Networking & Communication - OMG)

Certifications you can head for as a beginner:


Though its not so important but at-least earn a Bachelor's Degree in any computer related field.


CEH – ECCounil Certified Ethical Hacking
CASP – CompTIA Advanced Security Practitioner
Security+ CompTIA

CCNA and CCNP – CISCO
Network+ - CompTIA

CISE – Innobuzz’s Certified Information Security Expert


Tips –


1. Research ,try self-study apart from class room training.

2. Study hard and go in-depth, it is the only key to grow in this field.

3. Learn from tutorials, subscribe to blogs and forums and stay updated.

4. Buy books and make them your best friend.

5. Never give up

6. Stay focused - The quieter you become the more you are able to hear.

Stay hungry,Stay foolish! -  Steve Jobs
Like and subscribe!