HackPath — Learn Hacking the Right Way

Courses Roadmap Practice Pricing

Scanning & Exploitation - La Phase Offensive

0%

Lessons

Balayage et Énumération des Vulnérabilités

01Your First Network Scan — Understanding Before Using Nmap

02Scanning Techniques — Visibility, Detection, and Limits

03Advanced Enumeration with NSE

04From Version to CVE — Turning a Discovery into Risk

Exploitation

05Understanding Exploitation — Exploits, Payloads, and Shellcode

06Introduction to Metasploit

07First Exploits on Vulnerable Targets

08Manual Exploitation Without Metasploit

09Basic Post-Exploitation

10Vulnerability Reporting and Prioritization

Énumération Web

11Analyzing a web application: reading weak signals

12Analyzing a web application: headers, technologies, and entry points

13Nikto — Scanning Web Vulnerabilities

Attaques sur les Accès

14Exploiting Weak Passwords with Hydra

15Basic SQL Injection

16XSS: Reflected and Stored Cross-Site Scripting

17Hash cracking with Hashcat

18Exploiting Misconfigured Services

Après l'Accès

19Linux Privilege Escalation

20Persistence and Trace Management

21Understanding pivoting

Méthodologie Complète

22Reproducible Pentest Methodology

23Complete Pentest Simulation — From Scanning to Report

Lesson 16

XSS: Reflected and Stored Cross-Site Scripting

Understand how Cross-Site Scripting works, why it is in the OWASP Top 3, and learn how to identify and manually test reflected and stored XSS on DVWA.

Locked lesson

This lesson is reserved for members. Upgrade to unlock the full course.