Learn how to use Vega to be a proxy and enable monitoring of HTML requests to and from the web site.
- [Voiceover] We can actively test a website with Vega…by monitoring the traffic flowing between the browser…and the website…and looking for security issues…and test for issues with error handling…by manipulating request data.…This is known as proxy mode operation…because we configure our browser…to send http requests to Vega,…which will then send them on to the internet.…Likewise the responses will return to Vega…and Vega will pass them back to our browser.…This lets a pen tester review the full request…and response information to decide…whether there are any security concerns.…
If there are,…they can be investigated…as to whether they're exploitable.…To use proxy mode,…we need to configure Iceweasel to connect to the internet…via Vega.…Firstly, let's check what proxy port…Vega expects to listen on.…Let's open Window, Preferences,…and Expand the proxy item.…If we click on Listener,…we can see that Vega listens on port 888…for outgoing web traffic.…We could change this,…but it's fine as we can configure Iceweasel the same way.…
This course will give prospective ethical hackers a short overview of the tools in Kali Linux. Cybersecurity expert Malcolm Shore shows how to set up a virtual environment for testing, configure Kali Linux, and install toolsets for information gathering, vulnerability assessment, password and hash cracking, and target exploitation.
Because businesses are connected, they are also exposed. Vulnerability testing helps organizations limit that exposure. This course will help you explore the careers, techniques, and tools behind ethical hacking—one of the most competitive and sought-after IT security skills.
- Overview of Metaploit, Maltego, and Wifite
- Setting up a virtual lab with Oracle VM
- Installing virtual machines and appliances
- Exploring the Kali Linux applications
- Gathering information with DMitry and DNSenum
- Conducting a vulnerability assessment
- Installing OpenVAS and Vega
- Testing passwords
- Exploiting targets
Skill Level Beginner
Q: This course was updated on 06/12/2017. What changed?
A: The following topics were updated: setting up a virtual lab, installing appliances, Windows Credential Editor, using John for Windows passwords, pass the hash, using rainbow tables, exploiting with Armitage, pivoting through a network, and getting stealth and persistent access. In addition, a new video was added that shows how to create Trojans with msfvenom.
1. Setting Up the Virtual Lab
2. Introducing Kali
3. Information Gathering (Understanding the Target)
4. Vulnerability Analysis
5. Passwords and Hashes
6. Exploiting Targets
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.