Learn Social Engineering From Scratch 2024

This is a teaser lecture showing you an example of what you'll be able to do by the end of the course, don't worry about the technical aspect here, you will learn each step done here later on in the course, so just sit back and enjoy the lecture.

This lecture will give you an brief intro of what social engineering is, why its used in hacking, and why learn it?

This lecture will give you an overview of the whole course, its main sections, and what you'll learn in each of these sections.

In this course, we will be using a number of operating systems, Kali for hacking and 2 others as victim or target machines, in this section you will learn how to install all of these machines as virtual machines inside your current operating system, this allow us to use all of the machines at the same time, it also completely isolates these machines from your main machine therefore your main machine will not be affected if anything goes wrong.

This lecture will give you an overview of the lab that we will need to set up for this course.

This lecture will introduce you to the hacking operating system that we will be using throughout the course; Kali Linux. You will learn what it is, how to download it, and how to enable virtualisation on your system to run it as a virtual machine.

This lecture will teach you how to install Kali Linux as a virtual machine in VMware Workstation Player on Windows.
VMware is the software that we will use to install different operating systems inside our current operating system as virtual machines. This will be very useful as you can use it to test and practice what you learn in this course.

This lecture will teach you how to install Kali Linux as a virtual machine in VMware Fusion on Mac OS.
VMware is the software that we will use to install different operating systems inside our current operating system as virtual machines. This will be very useful as you can use it to test and practice what you learn in this course.

This lecture will teach you how to install Kali Linux as a virtual machine in VMware Workstation Player on Linux.
VMware is the software that we will use to install different operating systems inside our current operating system as virtual machines. This will be very useful as you can use it to test and practice what you learn in this course.

In this lecture we will have a basic look on Kali linux just to get you comfortable with using it.

In this lecture you will learn how to interact with the linux terminal and run linux commands.

This lecture will give you an overview of what information gathering is, why is it so important and what you'll learn in this section.

Maltego is a great information gathering tool that we will use during this course, this lecture will give you an overview of this tool and its basic usage.

In this lecture you will learn how to use Maltego to discover websites, domains, domain info and emails related to a company.

In this lecture you will learn how to discover the hosting company used by the target, their contact info and more.

This lecture will build up on what you learned so far about Maltego, you will learn how to discover links, websites, files and other companies associated with your target company.

Now that we are done gathering information about the target company, in this lecture we will analyse all the information we gathered so far and try to come up with attack strategies to hack into this company.

In this lecture and the next few ones we will start a new graph and try to gather information about a person not a company or a website, so we will start with a name (Zaid Sabih) and try to discover websites, links and social accounts associated with our target.

In this lecture you will learn how to gather even more information about our target person, you will learn how to discover potential friends (emails and social network accounts) of people associated with the target person.

Finally in this lecture you will learn how to discover emails of the target's friends, these can be very useful later on as we can pretend to be one of these friends and social engineer the target into doing something that would allow us to hack into their system.

In this lecture we will zoom out and look at the information that we gathered about the target person (Zaid Sabih) and analyse it to come up with a number of attack strategies.

This lecture will give you an overview of the structure of this section and what you'll learn in it.

In this lecture you will learn how to set up a windows virtual machine so that we can try and hack into it to practice penetration testing.

The Fat Rat is yet another tool that can be used to generate undetectable backdoors, in this lecture you will learn how to install it on Kali Linux.

In this lecture you will learn how to generate an undetectable backdoor using the fat rat and hack a Windows 10 machine with it.

Empire is a framework that can be used to generate backdoors for Windows, Linux, OS X and more, it uses a completely different approach to bypass anti-virus programs, this lecture will introduce you to this amazing framework and teach you how to install it on Kali Linux.

In this lecture you will learn how to use Empire to generate an undetectable backdoor and use it to hack a Windows 10 machine.

In this lecture you will learn how to modify the source code used in Empire stagers to get it to bypass all anti-virus programs.

In this lecture you will learn what is a keylogger and how it can be useful.

You will also learn how to install a program called zLogger that can be used to generate remote keyloggers.

This lecture will teach you how to use zLogger to generate a  remote keylogger.

In this video you'll see the keylogger that we generated before in action, we will test it against a Windows 10 machine and you'll see how it records all key strikes and sends them to the email we picked.

In this lecture we will have a look on a password recovery tool called LaZagne, this tool can recover saved passwords from Windows and Linux.

In this lecture you will learn how to use LaZagne to recover saved passwords from a local machine, this will only work if you already have access to the target machine.

In this lecture you will learn how to use LaZagne with a reporting payload to send stolen passwords to our email address.

In this lecture you will learn how to modify file's code to get it to bypass all anti-virus programs.

In this lecture we will have a look on a very useful yet simple payload, this payload can be used to download and execute any number of files when executed.

In this lecture you will learn how to use the download and execute payload to create a perfect spying tool that steals saved passwords and constantly logs and reports all keystrikes.

This lecture will teach you how to combine your backdoor with any other file (image, pdf ....etc).

This is the first step to convert our evil file to a trojan; an evil file that looks and functions like trusted file.

In this lecture you will learn how to enhance the trojan that we made in the previous lecture and make it run the evil code in the background without showing any suspicious pop ups.

Now that we have an evil file that functions like a normal file, we need to make it look like a normal file too, the first step to achieve that is to change the icon to something that represents the file that we are trying to mimc.

The last step of making a perfect trojan is to spoof its extension so that it has an extension thats relevant to the icon and to the file that the target is expecting.

In this lecture you will learn how to use another download and execute payload, the main advantage of this payload is the fact that you won't need to use any 3rd party software to convert it to exe, this is useful because sometimes some AV programs (usually not popular ones) flag ANY bat file converted to exe using these 3rd party programs as malware, this is obviously wrong and they usually do fix it after a while, but if you find yourself in a situation where your download and execute is getting detected then you can use this methods instead.

This lecture will show you how to compile the payload we created in the previous lecture to exe and change its icon.

In this lecture you will learn how to embed backdoor code in a legitimate Microsoft Office document, this is different to what you learned so far as we used to generate an exe that downloads and executes the backdoor in the background and display a normal file to the target, then we changed the icon and spoofed the extension to make the trojan look exactly like a normal file, in this method though we will inject the evil code inside the document, so the result is going to be a legitimate Microsoft Office file with a normal icon and a normal extension, but when executed it will display a normal Microsoft Office document and run the evil code in the background.

In this lecture you will learn how to embed any evil file with a legitimate Microsoft Office.

This lecture will give you an overview of what you'll learn in this section, the lab setup that I will use and how to replicate it.

In this lecture you will learn how to use a tool called msfvenome to generate a meterpreter backdoor for OS X.

msfvenom can be used to generate backdoors for all operating systems, so the steps shown in this lecture can be used to generate backdoors for other operating systems other than OS X.

This lecture will teach you how to generate a basic Empire backdoor for Mac OS X.

This lecture will teach you how to convert the backdoor we made in the previous lecture to an executable.

This lecture will teach you how to embed the backdoor we generated before with any other file such as an image or a pdf.

In this lecture we will have a look on a download and execute payload for OSX, we will use it to generate a trojan that would open a PDF, but at the same time it will execute a meterpreter payload in the background.

This lecture will teach you how to change the icon of our trojan to something that represents the file that the target is expecting.

This is the last step of creating our perfect trojan, in this lecture you will learn how to configure the trojan to run silently and only display the file that the target is expecting while running our evil file silently in the background.

This lecture will teach you how to install Ubuntu Linux as a virtual machine so that we can use it to practice hacking into Linux 

In this lecture you will learn how to agin access to any OS that uses bash (Linux, OS X, Android) using one command!

This lecture will teach you how to generate a more advanced backdoor for Linux systems.

In this lecture we will test the keylogger we generated in the previous lecture and spy on a Ubuntu Linux machine.

In this lecture you will learn how to use LaZagne to recover saved passwords from a local Linux machine.

In this lecture we will have a look on a very useful payload, this payload can be used to execute any command one the target machine and send the result to us by email.

 In this lecture we will use the execute & report payload to download & execute LaZagne then send the recovered passwords to us by email.

In this lecture you will learn how to embed evil code inside a legitimate .deb file.

In this lecture you will learn how to convert that package that we made in the previous video to a deb package, and use it to hack a Linux machine.

This lecture will teach you how to embed a backdoor in a legitimate Android app and use it to hack Android phones.

This lecture will give you an overview of the contents of this section.

Spoofing emails is one of the best methods to communicate with your target , in this lecture you'll learn how to set up your own mail server to emails to your target and make them appear as if they're sent from any email you want.

this lecture will teach you how to use the email server you created in the previous lecture to send emails that appear like they're sent from any email you want.

This lecture shows another method to spoof emails so they appear like they're sent from any email address.

In this lecture we will consider a scenario where we will use a number of techniques that we learned so far to hack into OS X or a Linux machine only by sending the target an email.

This lecture will teach you how to make an exact copy of any website you want!

In this lecture you will learn how to create a fake login page identical to the a real login page and social engineer your target to enter their login info in it.

BeEF is a browser exploitation framework that allows us to run a large number of commands on hooked browser.

In this lecture we will have an overview of the interface, how to start the framework and how to create a hook page and hook targets to it.

This lecture will teach you how to inject BeEF's hook in any web page you want.

This lecture will teach you a number of tricks to manipulate URLs to make them look less suspicious and increase the chances of the target clicking on them.

In this lecture you will learn how to lure your target into browsing an evil URL without communicating with them.

In this lecture you learn how to run some basic commands on the target machine using beef, you'll learn how to run any Javascript code, get a screenshot of the page they're browsing and redirect them to any page you want.

In this video you will learn how to use beef to display a fake login dialog to the target user and steal the password they enter, dialogs can be made for facebook, youtube, microsoft or you can even create your own using the custom option.

In this video we will use BeEF to create a fake clippy tip telling the user that there is a new update, the update is actually a backdoor, so once they install that update we will gain full control over the target machine.

In this video we will use BeEF to create a fake notification bar telling the user that there is a new update, the update is actually a backdoor, so once they install that update we will gain full control over the target machine.

In this lecture we will show a flash pop up telling the target that there is a new update, once they install the update they will install flash and run our backdoor in the background.