Think Like an Attacker. Defend Like a Pro.
Ethical Hack Lab gives you the hands-on penetration testing skills the industry actually hires for — built around live terminal demos, real tools like Metasploit, Burp Suite, and Nmap, and a career path that ends with certs, a portfolio, and a job offer.

"Every concept I teach has a live terminal behind it — because in this field, understanding what's happening at the command line is the difference between a professional and someone who just runs scripts."— Shari Johnson

What you'll learn
What you'll be able to do
- Perform complete penetration tests against networks, web apps, and systems using industry-standard tools like Nmap, Metasploit, and Burp Suite
- Identify, exploit, and document critical vulnerabilities including SQLi, XSS, buffer overflows, and privilege escalation paths
- Set up and operate a professional ethical hacking lab using VirtualBox/VMware with Kali Linux and intentionally vulnerable targets
- Intercept, analyze, and manipulate network traffic using Wireshark and man-in-the-middle techniques to understand real attack vectors
- Write clear, professional penetration testing reports that communicate risk in business language to both technical and non-technical stakeholders
- Prepare confidently for globally recognized certifications including CEH, CompTIA Security+, and OSCP with mapped study paths and practice challenges
How it works
A school that adapts to you
This isn't a set of static videos. Every lesson is generated live and tuned to where you actually are.
We learn your level
A quick placement check tailors your starting point so you're never bored or lost.
Lessons adapt as you go
Each lesson is written for your pace and your goal, adjusting as your skills grow.
Your AI coach keeps you moving
Checkpoints, feedback, and gentle nudges turn progress into a real result.
The curriculum
What's inside your school
6 modules · 27 lessons

Foundations of Ethical Hacking & the Attacker's Mindset
Establishes the legal, ethical, and conceptual groundwork every penetration tester must have before touching a target.
- 1.1What Ethical Hackers Actually DoIncluded
- 1.2Legal Frameworks & Rules of EngagementIncluded
- 1.3The Hacking Methodology: Phases of a PentestIncluded
- 1.4Certification Roadmap: CEH, Security+, and OSCPIncluded
Building Your Professional Ethical Hacking Lab
Gets students hands-on immediately by building a safe, isolated virtual environment with attacker and victim machines.
- 2.1Virtualization Essentials: VirtualBox & VMware SetupIncluded
- 2.2Installing & Navigating Kali LinuxIncluded
- 2.3Deploying Intentionally Vulnerable TargetsIncluded
- 2.4Lab Safety, Snapshots & Workflow Best PracticesIncluded
Reconnaissance & Network Scanning
Teaches students to gather intelligence on targets passively and actively before any exploitation attempt.
- 3.1Passive Reconnaissance: OSINT TechniquesIncluded
- 3.2Active Scanning with NmapIncluded
- 3.3Enumeration: Digging Deeper into ServicesIncluded
- 3.4Vulnerability Scanning with Nessus & OpenVASIncluded
Exploitation: Attacking Networks, Systems & Web Applications
Covers hands-on exploitation of the most critical vulnerability classes using industry-standard offensive tools.
- 4.1Exploitation Fundamentals with MetasploitIncluded
- 4.2Web Application Attacks: SQL Injection & XSSIncluded
- 4.3Web App Pentesting with Burp SuiteIncluded
- 4.4Password Attacks: Cracking, Spraying & Credential StuffingIncluded
- 4.5Buffer Overflows & Memory Corruption BasicsIncluded
Post-Exploitation, Network Traffic & Privilege Escalation
Shows what attackers do after gaining a foothold — escalating access, moving laterally, and intercepting traffic.
- 5.1Post-Exploitation with MeterpreterIncluded
- 5.2Privilege Escalation on Linux & WindowsIncluded
- 5.3Network Traffic Analysis with WiresharkIncluded
- 5.4Man-in-the-Middle Attacks: ARP Spoofing & SSL StrippingIncluded
- 5.5Lateral Movement & Covering TracksIncluded
Penetration Testing Reports & Career Launch
Transforms technical findings into professional deliverables and equips students to enter the cybersecurity job market.
- 6.1Anatomy of a Professional Pentest ReportIncluded
- 6.2Communicating Risk in Business LanguageIncluded
- 6.3Writing Your First Full Pentest ReportIncluded
- 6.4CTF Challenges & Exam Prep PracticeIncluded
- 6.5Breaking Into Cybersecurity: Portfolio, Certs & Job StrategyIncluded
Who it's for
Is this you?
Aspiring Penetration Testers
You want to break into offensive security and need a structured, hands-on path from zero to job-ready — not another theory-heavy intro course.
Sysadmins Going Offensive
You already manage networks and systems; this course gives you the attacker's perspective that makes your defensive decisions faster, sharper, and harder to bypass.
Security-Conscious Developers
You ship code and you're tired of learning about SQLi and XSS in post-mortems — hands-on exploitation teaches you to kill these vulnerabilities at the source.
Career-Changers into Cybersecurity
You're pivoting from another field and need a clear on-ramp: a real lab environment, marketable tool skills, and a cert roadmap that hiring managers recognize.
Cert Hunters (CEH / OSCP / Security+)
You're targeting a recognized certification and need exam-mapped practice, CTF challenges, and a study path that mirrors the actual objectives — not just flashcards.
IT Professionals Levelling Up
You've been in IT support or networking and want to move into a higher-paying security role without starting from scratch — this course bridges that gap directly.
Questions
Frequently asked
Your teacher
A note from your teacher
Shari Johnson
If you've been circling cybersecurity for a while — reading blog posts, bookmarking tools, maybe spinning up Kali once and staring at a blank terminal — I know exactly where you are. The information is everywhere, but it's scattered, inconsistent, and a lot of it is either dangerously oversimplified or buried in documentation written for people who already know the answer. You don't need more information. You need a structured lab, a clear methodology, and someone who will sit next to you (figuratively, for now) and show you exactly what's happening on the screen.
That's what Ethical Hack Lab is. Every module is built the way I'd teach a junior colleague on their first real engagement: here's the phase, here's the tool, here's what the output actually means, and here's what you do with it next. We start with the attacker's mindset and the legal framework that makes this work ethical and employable — not a five-minute disclaimer, but a genuine grounding in how professional pentesters think and operate. Then we build your lab from scratch: VirtualBox, Kali, vulnerable targets, snapshots, the works. From that point forward, every concept is demonstrated live, in a terminal, against a real target.
I want to be direct about something: this course will not make you a senior penetration tester overnight. What it will do is give you a complete, honest foundation — reconnaissance through post-exploitation, web app attacks through privilege escalation, network traffic analysis through professional report writing — that maps to real job requirements and real certification exams. The skills you build here are the skills you get paid for.
The reporting module deserves a special mention, because it's where most technical training stops and most careers stall. Knowing how to exploit a vulnerability is necessary. Being able to explain the business risk of that vulnerability to a CTO who doesn't know what a CVE is — that's what turns a technical exercise into a professional engagement. You'll leave this course with a pentest report you actually wrote, against a real lab target, that you can put in front of a hiring manager.
If you're ready to stop watching cybersecurity from the sideline and start building the skills, the portfolio, and the confidence to work in this field — the lab is set up. Let's get to work.
— Shari Johnson
Start your journey today
Join get instant access — learn at your own pace with an AI coach in your corner.
$79/mo
Recurring billing · cancel anytime
Secure checkout · Instant access
- 6 modules, 27 lessons
- AI-adaptive lessons tuned to your level
- Quizzes & checkpoints to lock in progress
- Your own AI learning coach
- Learn on any device, at your pace
- Full access for as long as you're subscribed