Ethical Hack Lab
Log in

Think Like an Attacker. Defend Like a Pro.

Ethical Hack Lab gives you the hands-on penetration testing skills the industry actually hires for — built around live terminal demos, real tools like Metasploit, Burp Suite, and Nmap, and a career path that ends with certs, a portfolio, and a job offer.

27 lessonsAI-adaptiveCancel anytimeLearn anywhere
Ethical Hack Lab

"Every concept I teach has a live terminal behind it — because in this field, understanding what's happening at the command line is the difference between a professional and someone who just runs scripts."Shari Johnson

What you'll learn

What you'll be able to do

  • Perform complete penetration tests against networks, web apps, and systems using industry-standard tools like Nmap, Metasploit, and Burp Suite
  • Identify, exploit, and document critical vulnerabilities including SQLi, XSS, buffer overflows, and privilege escalation paths
  • Set up and operate a professional ethical hacking lab using VirtualBox/VMware with Kali Linux and intentionally vulnerable targets
  • Intercept, analyze, and manipulate network traffic using Wireshark and man-in-the-middle techniques to understand real attack vectors
  • Write clear, professional penetration testing reports that communicate risk in business language to both technical and non-technical stakeholders
  • Prepare confidently for globally recognized certifications including CEH, CompTIA Security+, and OSCP with mapped study paths and practice challenges

How it works

A school that adapts to you

This isn't a set of static videos. Every lesson is generated live and tuned to where you actually are.

We learn your level

A quick placement check tailors your starting point so you're never bored or lost.

Lessons adapt as you go

Each lesson is written for your pace and your goal, adjusting as your skills grow.

Your AI coach keeps you moving

Checkpoints, feedback, and gentle nudges turn progress into a real result.

The curriculum

What's inside your school

6 modules · 27 lessons

1

Foundations of Ethical Hacking & the Attacker's Mindset

Establishes the legal, ethical, and conceptual groundwork every penetration tester must have before touching a target.

  • 1.1What Ethical Hackers Actually DoIncluded
  • 1.2Legal Frameworks & Rules of EngagementIncluded
  • 1.3The Hacking Methodology: Phases of a PentestIncluded
  • 1.4Certification Roadmap: CEH, Security+, and OSCPIncluded
2

Building Your Professional Ethical Hacking Lab

Gets students hands-on immediately by building a safe, isolated virtual environment with attacker and victim machines.

  • 2.1Virtualization Essentials: VirtualBox & VMware SetupIncluded
  • 2.2Installing & Navigating Kali LinuxIncluded
  • 2.3Deploying Intentionally Vulnerable TargetsIncluded
  • 2.4Lab Safety, Snapshots & Workflow Best PracticesIncluded
3

Reconnaissance & Network Scanning

Teaches students to gather intelligence on targets passively and actively before any exploitation attempt.

  • 3.1Passive Reconnaissance: OSINT TechniquesIncluded
  • 3.2Active Scanning with NmapIncluded
  • 3.3Enumeration: Digging Deeper into ServicesIncluded
  • 3.4Vulnerability Scanning with Nessus & OpenVASIncluded
4

Exploitation: Attacking Networks, Systems & Web Applications

Covers hands-on exploitation of the most critical vulnerability classes using industry-standard offensive tools.

  • 4.1Exploitation Fundamentals with MetasploitIncluded
  • 4.2Web Application Attacks: SQL Injection & XSSIncluded
  • 4.3Web App Pentesting with Burp SuiteIncluded
  • 4.4Password Attacks: Cracking, Spraying & Credential StuffingIncluded
  • 4.5Buffer Overflows & Memory Corruption BasicsIncluded
5

Post-Exploitation, Network Traffic & Privilege Escalation

Shows what attackers do after gaining a foothold — escalating access, moving laterally, and intercepting traffic.

  • 5.1Post-Exploitation with MeterpreterIncluded
  • 5.2Privilege Escalation on Linux & WindowsIncluded
  • 5.3Network Traffic Analysis with WiresharkIncluded
  • 5.4Man-in-the-Middle Attacks: ARP Spoofing & SSL StrippingIncluded
  • 5.5Lateral Movement & Covering TracksIncluded
6

Penetration Testing Reports & Career Launch

Transforms technical findings into professional deliverables and equips students to enter the cybersecurity job market.

  • 6.1Anatomy of a Professional Pentest ReportIncluded
  • 6.2Communicating Risk in Business LanguageIncluded
  • 6.3Writing Your First Full Pentest ReportIncluded
  • 6.4CTF Challenges & Exam Prep PracticeIncluded
  • 6.5Breaking Into Cybersecurity: Portfolio, Certs & Job StrategyIncluded

Who it's for

Is this you?

Aspiring Penetration Testers

You want to break into offensive security and need a structured, hands-on path from zero to job-ready — not another theory-heavy intro course.

Sysadmins Going Offensive

You already manage networks and systems; this course gives you the attacker's perspective that makes your defensive decisions faster, sharper, and harder to bypass.

Security-Conscious Developers

You ship code and you're tired of learning about SQLi and XSS in post-mortems — hands-on exploitation teaches you to kill these vulnerabilities at the source.

Career-Changers into Cybersecurity

You're pivoting from another field and need a clear on-ramp: a real lab environment, marketable tool skills, and a cert roadmap that hiring managers recognize.

Cert Hunters (CEH / OSCP / Security+)

You're targeting a recognized certification and need exam-mapped practice, CTF challenges, and a study path that mirrors the actual objectives — not just flashcards.

IT Professionals Levelling Up

You've been in IT support or networking and want to move into a higher-paying security role without starting from scratch — this course bridges that gap directly.

Questions

Frequently asked

Your teacher

A note from your teacher

Shari Johnson

Shari Johnson

If you've been circling cybersecurity for a while — reading blog posts, bookmarking tools, maybe spinning up Kali once and staring at a blank terminal — I know exactly where you are. The information is everywhere, but it's scattered, inconsistent, and a lot of it is either dangerously oversimplified or buried in documentation written for people who already know the answer. You don't need more information. You need a structured lab, a clear methodology, and someone who will sit next to you (figuratively, for now) and show you exactly what's happening on the screen.

That's what Ethical Hack Lab is. Every module is built the way I'd teach a junior colleague on their first real engagement: here's the phase, here's the tool, here's what the output actually means, and here's what you do with it next. We start with the attacker's mindset and the legal framework that makes this work ethical and employable — not a five-minute disclaimer, but a genuine grounding in how professional pentesters think and operate. Then we build your lab from scratch: VirtualBox, Kali, vulnerable targets, snapshots, the works. From that point forward, every concept is demonstrated live, in a terminal, against a real target.

I want to be direct about something: this course will not make you a senior penetration tester overnight. What it will do is give you a complete, honest foundation — reconnaissance through post-exploitation, web app attacks through privilege escalation, network traffic analysis through professional report writing — that maps to real job requirements and real certification exams. The skills you build here are the skills you get paid for.

The reporting module deserves a special mention, because it's where most technical training stops and most careers stall. Knowing how to exploit a vulnerability is necessary. Being able to explain the business risk of that vulnerability to a CTO who doesn't know what a CVE is — that's what turns a technical exercise into a professional engagement. You'll leave this course with a pentest report you actually wrote, against a real lab target, that you can put in front of a hiring manager.

If you're ready to stop watching cybersecurity from the sideline and start building the skills, the portfolio, and the confidence to work in this field — the lab is set up. Let's get to work.

Shari Johnson

Start your journey today

Join get instant access — learn at your own pace with an AI coach in your corner.

$79/mo

Recurring billing · cancel anytime

Secure checkout · Instant access

  • 6 modules, 27 lessons
  • AI-adaptive lessons tuned to your level
  • Quizzes & checkpoints to lock in progress
  • Your own AI learning coach
  • Learn on any device, at your pace
  • Full access for as long as you're subscribed