Best Metasploit Courses

Find the best online Metasploit Courses for you. The courses are sorted based on popularity and user ratings. We do not allow paid placements in any of our rankings. We also have a separate page listing only the Free Metasploit Courses.

Ethical Hacking – Basics (Kali 2021)

Learning on Kali 2021

Created by Arthur Salmon - Skilled Cyber & Networking Instructor

"]

Students: 15928, Price: Free

Students: 15928, Price:  Free

Kali is a penetration testing Linux distribution created by Offensive Security. It holds a repository of multiple tools for security-related engineers including hacking wireless networks, web applications, databases, Reverse engineering, password crackers, and much more! As you can see, Kali is a versatile and powerful tool for anyone looking to do any cybersecurity-related work.

Keep in mind this is a basics course, which means this course is a beginner’s guide to getting started in Kali…to get your feet wet. The course is broken down into several sections focusing on certain aspects of the ethical hacking process. Starting off with an overview of Kali and its use cases then offer a step-by-step walkthrough of installing Kali using VMware. Next, we teach you some important configuration settings in the distribution including configuring your network and managing services in Kali. Knowing these procedures will help you set up the proper environments when using Kali and its tools.

We will cover the five phases and the tools used in each phase, again this is an introduction so we may not go super in-depth but you will leave with a basic understanding of how to do things and why they are done in each phase. Because of issues with Udemy free courses being less than two hours I am not able to add additional content. However, I will be publishing more free courses. I will be publishing a more focused Course on each of the phases.

The goal is to provide you with basic knowledge to get you started so you can take it from there. Remember this is not a field that you have can walkthrough. You will have to grow and adapt as the environment changes.

Practice Your First Penetration Test: Kali & Metasploit Lab

Learn ethical hacking with Kali in your own lab, scan targets with Nmap and exploit victims with metasploit!

Created by FeltSecure Labs - FeltSecure Labs: Cyber Security Courses with 10000+ Students

"]

Students: 14258, Price: $74.99

Students: 14258, Price:  Paid

Learn the popular security tools and techniques that you will need to run penetration tests with the best ethical hacking distribution Kali, and the tools: Nmap and Metasploit.

Learn the Essential Techniques and Build a Strong Foundation in Penetration Testing in This Comprehensive Course From Scratch!

  • Set up ethical hacking environment with Kali
  • Prepare virtual victim environment to run your tests safely
  • Scan the targets with easy-to-use and affective commands in Nmap
  • Discover the vulnerabilities to hack into systems
  • Exploit the targets with Metasploit
  • Interact with payloads on victim machines 
  • Download documents, create remote users and take screen captures from exploited Linux and Windows servers.

Powerful Security Skills at Your Fingertips

Learning the fundamentals of ethical hacking puts a powerful and very useful skill at your fingertips. Kali, nmap and metasploit are free and easy to learn tools from beginner to advanced penetration testing operations.

Jobs in penetration testing positions are plentiful and companies are constantly looking for cyber security professionals who have practical-hands on experience on Kali and Metasploit. Experts from the IT industry are also looking for simple yet effective solutions to keep their systems secure.

This course is perfect for anyone seeking to provide safe and secure IT systems with implementing ethical hacking and penetration testing solutions.

Contents and Overview

Suitable for beginners in cyber security, through this course of 45+ lectures and 3 hours of video content, you will learn all the details about setting up and using Kali Linux Distribution and establish a strong understanding of the process behind a professional penetration test. 

This course starts with introducing basic - yet very important aspects of ethical hacking. After this quick summary, you will find yourself already practicing how to setup a penetration testing platform with Kali and victim machines, which you can use in your professional life.

Right after deploying the systems, you will immediately start scanning the target environment, which consists of 1 intentionally vulnerable Linux distribution and 1 Windows 7.

After completing scanning operations, you will learn the famous hacking framework Metasploit with all important options, by practicing against victim machines. And finally, you will be able to exploit and remotely access to Linux and Windows machines, where you will practice ethical hacking skills like downloading documents and gaining passwords, with leveraging advanced payloads like meterpreter.

Upon completion, you will learn how to prepare your ethical hacking environment with Kali, scan network segments per your needs, discover vulnerabilities, exploit victims and gain remote access to compromised machines.

What are the requirements?

  • A willingness to learn and an open mind
  • Basic understanding of how computers work
  • Some linux and network experience is a plus

What am I going to get from this course?

  • By the end of this course, you will be able to prepare your hacking environment and start using Kali
  • You will have the ability to scan networks to detect open ports and services
  • You will discover vulnerabilities by comparing your nmap scan results and related metasploit modules
  • You will exploit vulnerable application with metasploit modules
  • You will access compromised servers and run commands remotely

What is the target audience?

  • College students and professionals from technical domains
  • IT enthusiasts or entrepreneurs
  • Anyone interested in exploring a new domain from scratch

Complete Ethical Hacking and Penetration Testing Course

My Ethical Hacking course includes Web Hacking, Phishing, NMAP, Password Cracking, Penetration Testing, Metasploit &more

Created by Oak Academy - Web & Mobile Development, IOS, Android, Ethical Hacking, IT

"]

Students: 10863, Price: $109.99

Students: 10863, Price:  Paid

Welcome to Complete Ethical Hacking and Penetration Testing Course.

My Complete Ethical Hacking and Penetration Testing Course is for everyone! If you don’t have any previous experience on a Ethical Hacking, not a problem! 

This course is expertly designed to teach everyone from complete beginners, right through to pro hackers. You'll go from beginner to extremely high-level and I will take you through each step with hands-on examples.

And if you are a pro-Ethical Hacker, then take this course to quickly absorb the latest skills, while refreshing existing ones.

The good news is: 

All applications and tools recommended are free. So you don’t need to buy any tool or application.

Before attending the course please read below the course requirements.

This course is focused on the practical side of penetration testing and ethical hacking but I also will share with you the theory side of each attack. Before jumping into Penetration Testing or other practices with Ethical Hacking tools you will first learn how to set up a lab and install needed software on your machine.   In this course, you will have a chance to keep yourself up-to-date and equip yourself with a range of Ethical Hacking skills.

When you finish this course you will learn the most effective steps to prevent attacks and detect adversaries with actionable techniques that you can directly apply when you get back to work. I am coming from the field and I will be sharing my 20 years' experience with all of you. So you will also learn tips and tricks from me so that you can win the battle against the wide range of cyber adversaries that want to harm your environment.  

Requirements

CPU: 64-bit Intel i5/i7 (4th generation +) - x64 bit 2.0+ GHz processor or more recent processor is mandatory for this class (Important - Please Read: a 64-bit system processor is mandatory)

Virtualization Technology: Enable virtualization technology on BIOS settings, such as “Intel-VTx”.

RAM : 8 GB (Gigabytes) of RAM or higher (16 GB recommended)

Modern Browsers:

  • Google Chrome (latest)

  • Mozilla Firefox (latest)

  • Microsoft Edge (latest)

Disk : 20 GB or more disk space

Here is the list of  what you’ll learn by the end of course,    

Setting Up The Laboratory
Set Up Kali Linux from VM
Set Up Kali Linux from ISO File
Set Up a Victim: Metasploitable Linux
Set Up a Victim: OWASP Broken Web Applications
Set Up a Victim: Windows System

Penetration Test

Penetration Test Types
Security Audit
Vulnerability Scan
Penetration Test Approaches: Black Box to White Box
Penetration Test Phases: Reconnaissance to Reporting
Legal Issues Testing Standards

Network Scan

Network Scan Types
Passive Scan With Wireshark
Passive Scan with ARP Tables
Active Scan with Hping
Hping for Another Purpose: DDos

Nmap for Active Network Scan

Ping Scan to Enumerate Network Hosts
Port Scan with Nmap
SYN Scan, TCP Scan, UDP Scan
Version & Operating System Detection
Input & Output Management in Nmap
Nmap Scripting Engine
How to Bypass Security Measures in Nmap Scans
Some Other Types of Scans: XMAS, ACK, etc.
Idle (Stealth) Scan

Vulnerability Scan

Introduction to Vulnerability Scan
Introduction to a Vulnerability Scanner: Nessus
Nessus: Download, Install & Setup
Nessus: Creating a Custom Policy
Nessus: First Scan
An Aggressive Scan
Nessus: Report Function

Exploitation

Exploitation Terminologies
Exploit Databases
Manual Exploitation
Exploitation Frameworks
Metasploit Framework (MSF)
Introduction to MSF Console
MSF Console & How to Run an Exploit
Introduction to Meterpreter
Gaining a Meterpreter Session
Meterpreter Basics
Pass the Hash: Hack Even There is No Vulnerability

Post-Exploitation

Persistence: What is it?
Persistence Module of Meterpreter
Removing a Persistence Backdoor
Next Generation Persistence
Meterpreter for Post-Exploitation with Extensions: Core, Stdapi, Mimikatz...
Post Modules of Metasploit Framework (MSF)
Collecting Sensitive Data in Post-Exploitation Phase

Password Cracking

Password Hashes of Windows Systems
Password Hashes of Linux Systems
Classification of Password Cracking
Password Cracking Tools in Action: Hydra, Cain and Abel, John the Ripper...

OSINT (Open Source Intelligent) & Information Gathering Over the Internet

Introduction to Information Gathering
Using Search Engines to Gather Information
Search Engine Tools: SiteDigger and SearchDiggity
Shodan
Gathering Information About the People
Web Archives
FOCA - Fingerprinting Organisations with Collected Archives
Fingerprinting Tools: The Harvester and Recon-NG
Maltego - Visual Link Analysis Tool

Hacking Web Applications

Terms and Standards 
Intercepting HTTP & HTTPS Traffics with Burp Suite
An Automated Tool: Zed Attack Proxy (ZAP) in Details
Information Gathering and Configuration Flaws
Input & Output Manipulation
Cross Site Scripting (XSS)
Reflected XSS, Stored XSS and DOM-Based XSS
BeEF - The Browser Exploitation Framework
SQL Injection
Authentication Flaws
Online Password Cracking
Authorisation Flaws
Path Traversal Attack
Session Management
Session Fixation Attack
Cross-Site Request Forgery (CSRF)

Social Engineering & Phishing Attacks

Social Engineering Terminologies 
Creating Malware - Terminologies
MSF Venom
Veil to Create Custom Payloads
TheFatRat - Installation and Creating a Custom Malware
Embedding Malware in PDF Files
Embedding Malware in Word Documents
Embedding Malware in Firefox Add-ons
Empire Project in Action
Exploiting Java Vulnerabilities
Social Engineering Toolkit (SET) for Phishing
Sending Fake Emails for Phishing
Voice Phishing: Vishing

Network Fundamentals

Reference Models: OSI vs. TCP/IP
Demonstration of OSI Layers Using Wireshark
Data Link Layer (Layer 2) Standards & Protocols
Layer 2: Ethernet - Principles, Frames & Headers
Layer 2: ARP - Address Resolution Protocol
Layer 2: VLANs (Virtual Local Area Networks)
Layer 2: WLANs (Wireless Local Area Networks)
Introduction to Network Layer (Layer 3)
Layer 3: IP (Internet Protocol)
Layer 3: IPv4 Addressing System
Layer 3: IPv4 Subnetting
Layer 3: Private Networks
Layer 3: NAT (Network Address Translation)
Layer 3: IPv6
Layer 3: DHCP - How the Mechanism Works
Layer 3: ICMP (Internet Control Message Protocol)
Layer 3: Traceroute
Introduction to Transport Layer (Layer 4)
Layer 4: TCP (Transmission Control Protocol)
Layer 4: UDP (User Datagram Protocol)
Introduction to Application Layer (Layer 5 to 7)
Layer 7: DNS (Domain Name System)
Layer 7: HTTP (Hyper Text Transfer Protocol)
Layer 7: HTTPS

Network Layer & Layer-2 Attacks

Creating Network with GNS3
Network Sniffing: The “Man in the Middle” (MitM)
Network Sniffing: TCPDump
Network Sniffing: Wireshark
Active Network Devices: Router, Switch, Hub
MAC Flood Using Macof
ARP Spoof
ARP Cache Poisoning using Ettercap
DHCP Starvation & DHCP Spoofing
VLAN Hopping: Switch Spoofing, Double Tagging
Reconnaissance on Network Devices
Cracking the Passwords of the Services of Network Devices
Compromising SNMP: Finding Community Names Using NMAP Scripts
Compromising SNMP: Write Access Check Using SNMP-Check Tool
Compromising SNMP: Grabbing SNMP Configuration Using Metasploit
Weaknesses of the Network Devices
Password Creation Methods of Cisco Routers
Identity Management in the Network Devices
ACLs (Access Control Lists) in Cisco Switches & Routers
SNMP (Simple Network Management Protocol) Security

You'll also get:

  • Lifetime Access to The Course

  • Fast & Friendly Support in the Q&A section

  • Udemy Certificate of Completion Ready for Download

    Enroll now to become a professional Ethical Hacker!

    IMPORTANT: This course is created for educational purposes and all the information learned should be used when the attacker is authorized.
      

Real-World Ethical Hacking: Hands-on Cybersecurity

Protect yourself, gain the hottest new job skills, and learn the tricks the bad guys use - with Kali Linux & Metasploit!

Created by Bryson Payne - Best-Selling Author & Professor w/students in 163 countries

"]

Students: 10279, Price: $49.99

Students: 10279, Price:  Paid

★★★★★ Join over 7,500 students in the top hands-on Ethical Hacking and Cybersecurity course! ★★★★★

New and updated for VirtualBox 6.1 and Kali 2020.2 and later! Learn Ethical Hacking, one of the fastest-growing and highest-paying careers, with over 1 Million cybersecurity job openings available this year! Learn practical, useful cybersecurity step-by-step from Computer Science Professor Dr. Bryson Payne, a SANS|GIAC Certified Pen Tester (GPEN), Certified Ethical Hacker (CEH) and Certified Information Systems Security Professional (CISSP), and author of the Amazon #1 New Release and Top 10 Best Seller in Children's Programming Books, Teach Your Kids to Code (2015, No Starch Press) and his latest book, Hacking for Kids (2020, No Starch Press). Dr. Payne is also the Director of the Center for Cyber Operations Education at the University of North Georgia and directs the National Cyber Warrior Academy summer program.

Update 2020: Pre-order Dr. Payne's new book, "Hacking for Kids" on Amazon now!

Give Yourself a Huge Advantage in a High-Tech World

  • Quickly master new hands-on skills in Linux, Windows and Android hacking and cybersecurity.

  • Set up your own safe, FREE virtual network and VM (virtual machine) lab for Ethical Hacking on your PC, Mac, and Linux.

  • Protect yourself from viruses, phishing, ransomware, and other attacks by learning how the bad guys work, and how to stop them.

  • Includes Mobile Hacking on your own Android VM, plus Car Hacking using can-utils and ICSim on Kali Linux.

  • Great for beginners, or for capable computer users who want to learn both how and why to secure their data.

  • Learn to fix vulnerabilities, and how to stop 85% of attacks by doing just four things

This is the security course everyone should take!

Packed with real-world, practical examples, real hacking techniques, and easy-to-follow plain English instruction, Real-World Ethical Hacking is the course for the new generation of cyber heroes, as they build one of the top job skills of the 21st century! With over 1,000,000 cybersecurity jobs posted in the U.S. this year alone, and over 6 Million openings expected worldwide over the next few years, now is the time to skill up in cyber! 

I designed this course to be easily understood by beginners, with examples I use in my college information security courses and in high-school cyber summer camps. Whether you're retooling for a career change, adding skills to your resume for a raise, or just getting started, Real-World Ethical Hacking is the course for you!

Quick, 4- to 10-minute lessons will get you performing real ethical hacking exercises in minutes. Over 75 video lectures and more than 8 hours of content will give you the practice you need to develop powerful new skills in cybersecurity and penetration testing! Protect your identity, your computer, your information, and your life - avoid social engineering, phishing, online attacks, ransomware and more! Plus, practical skills like:

  • Retrieve files from an old computer (Mac or PC, laptop or desktop), even if you've forgotten the password

  • Set up a virtual "sandbox" to safely open suspicious files without exposing your "real" computer

  • Learn command-line short-cuts and power tools that make you look like a computer wizard!

  • Understand how viruses and backdoors infect your computer AND phone, and how to stop them!

Everything you need to get started right away

Complete with all FREE online resources (VirtualBox, Kali Linux, and FREE, LEGAL copies of Windows 10 and Android virtual machines), combined with high-definition videos - you'll be able to work alongside a professor with almost 20 years' teaching experience at the University level. You'll also receive a Certificate of Completion upon finishing the course.

No Risk: Preview videos from Sections 1, 2, and 4 now for FREE, and enjoy a 30-day money-back guarantee when you enroll - zero risk, unlimited payoff! And, we've made this course easy to afford so anyone can get started now!

Sign up for this course and get started securing yourself, your family, and your business today!

***** Bonus section on Car Hacking shows how to perform a Replay Attack on your car's Controller Area Network (CAN) using a $20-$70 cable and Kali Linux running CANsniffer and CANplayer*****

Praise for Dr. Payne's courses on Udemy:

★★★★★ "Inspired" - ...An inspiring course taught by an inspired teacher. The examples are well-chosen -- demonstrating principles through engaging, colorful projects rather than by teaching abstract principles first... — Kent Osband, Udemy student

★★★★★ Clear examples... Bryson's delivery is well paced and good fun. — Sean Jon Darcy, Udemy student

★★★★★ “Dr. Bryson Payne is a computer scientist and professor of the highest caliber... he brings the power of computers within easy reach for learners young and old."—Dr. Antonio Sanz Montemayor, Informatics Professor, Universidad Rey Juan Carlos, Spain

Ethical Hacking with Metasploit: Exploit & Post Exploit

Learn Ethical Hacking from scratch with Metasploit , exploit vulnerabilities and become a white hat hacker

Created by Muharrem AYDIN - Computer Engineer, Ethical Hacking, Cyber Security Expert

"]

Students: 5308, Price: $89.99

Students: 5308, Price:  Paid

Hi there,

Welcome to my “Ethical Hacking with Metasploit: Exploit & Post Exploit” course.

This course is a monster!!!

It covers the fundamental building blocks of hacking, penetration testing (Kali Linux), gaining control using Metasploit and application development.

Do not worry. You don’t need to have a previous knowledge about all. This course will take you from a beginner to a more advanced level.

Good news is since free and popular tools are used you don’t need to buy any tool or application.

All my students will have a chance to learn how to set up a lab environment and install the needed virtual machines such as Kali Linux and the tools: Nessus and Metasploit.

This course starts with very basics. First you will learn how to install the the tools, some terminology and how devices communicate with each other. Then you will learn how to scan vulnerabilities with Nessus and gain full access to computer systems via discovering the weaknesses and vulnerabilities.

In this course you'll also become an expert with Metasploit framework by using msfconsole interface. After learning Metasploit by practicing against victim machines you will be able to exploit and remotely access to Linux and Windows victim machines and gain control and access files (read/write/update/execute).

You will not only learn compromising the target systems via vulnerabilities but also Pass the Hash: a genuine way to exploit systems even though they don’t have any vulnerability.

In this course you will also learn different password collection techniques such as using keylogger, and learn how to crack password hashes using brute force and dictionary attack techniques.

All the attacks in this course are explained in a simple way and with hands-on practices. First you will learn the theory behind each attack and then you will learn how to carry out the attack using tools. I’m always updating this course with fresh content, too. It’s no secret how technology is advancing at a rapid rate. New tools are released every day, and it’s crucial to stay on top of the latest knowledge for being a better security specialist. You will always have up-to-date content to this course at no extra charge. After buying this course, you’ll have lifetime access to it and any future updates.

Any question are welcomed! I’ll personally answer all your questions.

Be sure that I will always be here for full support as I did before. You can see this in my previous course's reviews.

This course is just wow ! It hold a lot of information and practical use in real life. In my opinion, students who is interested in ETHICAL HACKING must take this course it hold a lot of information, Don't go with duration of course. Instructor is also very supportive and give you quick answer of all your question. Thank you for making this course for us. This course really expand my knowledge and i really enjoyed it.” - Prabhakar Mishra

 "Easy teaching, no unnecessary statements. Just telling what is needed... An effective real introduction to pentest." - Ben Dursun

"Very good experience, I always wanted such type of training which is filled with deep explanation and demo. I am interested in the security field and want to make my career in this domain, I really enjoy the learning." - Pragya Nidhi

 Here is the list of  what you’ll learn by the end of course,

  • Preparation for Hands-on experiences: Kali, Metasploitable Linux, Windows XP, Windows 8
  • Vulnerability Scanning: How to find vulnerabilities to exploit
  • Concept & Terminology: Vulnerability, Exploit, Post Exploit, Payload
  • Risks: Risks of the exploitation and mitigations
  • Exploit Databases: Exploit-DB, Packet Storm
  • Metasploit: Metasploit Framework, Msfconsole, Meterpreter
  • Pass the Hash: Ps-Exec
  • Persistence: Backdoor, service modification, creating account
  • Meterpreter Extensions: Core, Stdapi, Incognito,  
  • MSF Post Exploitation Modules: Escalate, Gather , Manage
  • Password Cracking: Hydra, Cain & Abel, John the Ripper  
  • Shared Files and End User Computers: With some real world examples

 IMPORTANT: This course is created for educational purposes and all the information learned should be used when the attacker is authorized.


Ethical Hacking with Nmap and Metasploit Framework Part-2

Learn to conduct vulnerability assessment with Nmap and penetration testing Metasploit

Created by Rajneesh Gupta - Cyber Security Practitioner and Instructor

"]

Students: 4700, Price: Free

Students: 4700, Price:  Free

Learn to conduct vulnerability assessment with Nmap and penetration testing Metasploit framework.

Nmap ("Network Mapper") is a free and open source (license) utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime.

The Metasploit Project was undertaken in 2003 by H.D. Moore for use as a Perl-based portable network tool, with assistance from core developer Matt Miller. It was fully converted to Ruby by 2007, and the license was acquired by Rapid7 in 2009, where it remains as part of the Boston-based company’s repertoire of IDS signature development and targeted remote exploit, fuzzing, anti-forensic, and evasion tools.

Metasploit Framework: Penetration Testing with Metasploit

Become Hacker: Learn ethical hacking and penetration testing using Metasploit and start your cyber security career

Created by Oak Academy - Web & Mobile Development, IOS, Android, Ethical Hacking, IT

"]

Students: 3840, Price: $129.99

Students: 3840, Price:  Paid

Hi there,

Welcome to "Metasploit Framework: Penetration Testing with Metasploit" course.

In this course, you will learn ethical hacking with the best ethical hacking distribution Kali, and the tool: Metasploit.

This is not a pure Penetration Testing course but Complete Penetration Testing with Metasploit course.

In this course, you will learn the capabilities of the Metasploit Framework while you are doing a penetration test.

No Previous Knowledge is needed!

You don’t need to have previous knowledge about all. This course will take you from a beginner to a more advanced level with hands-on examples.

Learn the famous hacking framework Metasploit

We will start with the very basics. First, you will learn to set up a laboratory. Then you will learn

-how to scan vulnerabilities

-gain full access to computer systems

-to discover the weaknesses and vulnerabilities and at the end of the course, you will become a Metasploit pro.

We will be conducting penetration testing only with Metasploit Framework and by doing so, we want to show you how to use the framework and cover as much as modules that I can.

Hands-On Course

From open-source research and information gathering to the exploitation and covering of their tracks, you will learn hands-on techniques to probe your network for vulnerabilities and understand how they are exploited. You will learn to think like a hacker in order to thwart black hat hackers future attacks on your networks.

Here is the list of what you’ll learn by the end of course,

  • Penetration Testing with Metasploit

  • Why the Metasploit Framework? aka: MSF

  • Metasploit Filesystem and Libraries

  • Enumeration

  • Vulnerability Scanning

  • Exploitation and Gaining Access

  • Post-exploitation-Meterpreter

  • Antivirus Evasion and Cleaning

Fresh Content

It’s no secret how technology is advancing at a rapid rate. New tools are released every day, and it’s crucial to stay on top of the latest knowledge for being a better security specialist. You will always have up-to-date content to this course at no extra charge.

Video and Audio Production Quality

All our contents are created/produced as high-quality video/audio to provide you the best learning experience.

You will be,

  • Seeing clearly

  • Hearing clearly

  • Moving through the course without distractions

You'll also get:

  • Lifetime Access to The Course

  • Fast & Friendly Support in the Q&A section

  • Udemy Certificate of Completion Ready for Download

Dive in now!

We offer full support, answering any questions.

See you in the course!

IMPORTANT: This course is created for educational purposes and all the information learned should be used when the attacker is authorized.