Course Overview
Capture the Flag (CTF) is a cybersecurity competition format that challenges participants across domains including web exploitation, binary analysis, cryptography, network attacks, and digital forensics. Each challenge carries points weighted by difficulty, rewarding practical skill over theory. These competitions closely mirror real-world attack scenarios, making them one of the most effective ways to build and sharpen offensive security expertise.
This course is built for those who want to move beyond theory into structured, hands-on offensive security training. Across 20 modules, you will develop skills in Linux and Windows pentesting, Active Directory exploitation, privilege escalation, payload crafting, reverse shells, and network pivoting β all practiced in live lab environments. The curriculum progressively takes you from core fundamentals to advanced attack chains, preparing you to compete in global CTF events and pursue a career in penetration testing.
Prerequisites
Before opting for this course, the candidate should be aware of advanced ethical hacking techniques, networking services, OWASP top 10, Linux / Windows basic and major commands, the Unix File System, and the working of the Content Management System.
Training Modules
- Introduction to CTF and its importance in cyber world
- Introduction to Cyber Range
- Difference between CTF and Cyber Range
- CTF Course overview
- Types of CTF challenges platform
- Famous Channel Of CTF
- Basics of Linux service
- Linux foremost commands
- Linux filesystems
- Linux Utility
- Installing & configuration of systems packages
- Deleting & removing systems package
- Reading Logs
- Basics of Windows services & Registry
- Windows foremost commands
- Windows filesystems
- Windows Utility
- Working of dll, Python & C-programs
- Installing & configuration of systems packages
- Deleting & removing systems package
- Reading event Logs
- Introduction to toolbox
- Kali Linux services
- Searching, Installing, and Removing Tools
- Basic to Advanced Pentesting Commands
- Finding Files in Kali
- Overview
- DNS Enumeration
- SMB Enumeration
- NFS Enumeration
- MSSQL Enumeration
- SMTP Enumeration
- SNMP Enumeration
- TCP Connect Scan
- Network Sweeping
- Stealth Scanning
- UDP Scanning
- Banner Grabbing
- OS Discovery
- NSE Scripts
- Web Application Enumeration
- SQL Injection
- File Inclusion
- Remote Code Execution
- Authentication Bypass
- Directory Brute Forcing
- Cross Site Scripting
- Directory Traversal
- Kali Linux Wordlists
- Creating Wordlists
- Retrieve Password Hashes
- Hydra/Medusa/Ncrack
- Windows Credential Dumping
- Overview
- AD & Domain Controller Lab Setup
- Active Directory Enumeration
- Active Directory Authentication
- Lateral Movement with NetExec
- NXC LDAP Enumeration
- EXE
- HTA
- Batch File
- PowerShell Modules
- MSI
- Overview & Lab Setup
- Port Forwarding
- SSH Tunnels
- Chisel
- Ligolo-NG
- FTP
- Python HTTP Server
- Netcat
- CURL
- Wget
- NXC
- Python SMB Server
- PowerShell File Transfer
- Rustcat
- Netcat
- Pwncat
- Windows ConPTY
- Generic Write
- Force Change Password
- Add Group Members
- BloodHound
- Generic ALL
- Lab Setup
- Enumeration
- Enable xp_cmdshell
- Exploit xp_cmdshell
- Token Impersonate
- Understanding Linux Privileges
- Writable Script
- Crontab
- Kernel
- SUID
- Automated Script
- Sudoers
- Python Library Hijacking
- Disk Group Privileges
- Manual Post Enumeration
- Kernel/Bypass UAC/Patch Levels
- Windows Services
- Backup Operator Group
- Token Impersonate
- Unquoted Service Path
- Scheduled Task
- Automated Script
- www.revshells.com
- HackTools Firefox Addon
- CyberChef
- Ascii to Hex
- LOLBin
- GTFOBin
- Process Monitor
- Report Writing
- Google Hacking Database
- SearchSploit
- Exploit DB
- SecurityFocus
- PacketStorm Security
- Mitre CVE
- Level 1: Easy
- Level 2: Medium
- Level 3: Intermediate
- Level 4: Hard