The Art of Hacking

2020 Edition


Securing customer data is often crucial when deploying and managing web applications and network infrastructure. As such, IT administrators and web developers require security knowledge and awareness in order to secure their environment. Due to this requirement, operational staff often require hands-on course and experience to identify, control and prevent organisational threats.

One of the best classes I have taken in a long time. The content was on point and kept me engaged. I am new to Cyber Security after 25 years in App Development and am very pleased with what I have learnedDelegate, Black Hat USA 2016
Very organized and clearly presented. Great having hands-on experience with individuals ready to assist when help is neededDelegate, Black Hat USA 2016
Really enjoyed the lab and the walkthroughs, it helped expedite the learning process.Delegate, Black Hat USA 2016

Class Overview

This introductory/intermediate technical course brings together Infrastructure Security and Web Application Security into a 5-day “Art of Hacking” course designed to teach the fundamentals of hacking. This hands-on course was written to address the market need around the world for a real hands-on, practical and hacking experience that focuses on what is really needed when conducting Pen Testing.



Class Details

This course teaches attendees a wealth of techniques to compromise the security of various operating systems, networking devices and web application components. The course starts from the very basic and builds up to the level where attendees can not only use the tools and techniques to hack various components involved in infrastructure and web hacking, but also gain solid understanding of the concepts on which these tools are based. This course combines a formal hacking methodology with a variety of tools to teach the core principles of ethical hacking.


Day 1

Infrastructure Basics

  • TCP/IP Basics
  • The Art of Port Scanning
  • Target Enumeration
  • Brute-Forcing
  • Metasploit Basics
  • Password Cracking

Day 2

Hacking Unix, Databases and Applications

  • Hacking Recent Unix Vulnerabilities
  • Privilege Escalation Techniques
  • Hacking Databases
  • Hacking Application Servers
  • Hacking Third Party Applications (WordPress, Joomla, Drupal)

Day 3

Hacking Windows

  • Windows Enumeration
  • Hacking Recent Windows Vulnerabilities.
  • Hacking Third party Software (Browser, PDF, Java)
  • Windows Privilege Escalation
  • Post Exploitation: Dumping Secrets
  • Hacking Windows Domains

Day 4

Information Gathering, Profiling and Cross-Site Scripting

  • Understanding HTTP protocol
  • Identifying the Attack Surface
  • Username Enumeration
  • Information Disclosure
  • Issues with SSL/TLS
  • Authorization Bypass

Day 5

Injection, Flaws, Files and Hacks

  • Cross Site Scripting
  • Cross-Site Request Forgery
  • SQL Injection
  • XXE Attacks
  • OS Code Injection
  • Local/Remote File include
  • Insecure File Uploads
  • Deserialization Vulnerabilities


Who Should Take This Class?

  • System Administrators who are interested in learning how to exploit Windows and Linux systems

  • Web Developers who want to find and exploit common web application vulnerabilities

  • Network Engineers who want to secure and defend their network infrastructure from malicious attacks

  • Security enthusiasts new to the information security field who want to learn the art of ethical hacking

  • Security Consultants looking to relearn and refresh their foundational knowledge

How to book

    What courses are you interested in?


    Also Available from our partners below

    UK and Virtual


    Frequently Asked Questions

    What is the “Art of Hacking”?
    The Art of Hacking (AoH) is essential training for those entering the world of IT Security and Penetration Testing or for those who wish to consolidate and formalize their knowledge and wish to demonstrate, through hands-on work.
    Why was Art of Hacking written?
    The Art of Hacking was written by professional Penetration Testers and Black Hat Trainers (NotSoSecure) because of the clear need in the market to help people develop not only knowledge, but also hands-on, demonstrable skill. Our coined phrase is; “don’t just tell me, show me.”
    How is this of value to my employer and career?
    This course is underpinned by a very detailed training structure designed by professional educators and hackers. By taking the course, you will be able to demonstrate that you have been through structured learning process and it will prove your hands-on competency and skill in the subject material; you can prove to your employer that you have the formalized foundations of a professional Penetration Tester.
    I have already taken other classes; will this e-Learning be of value to me?
    We were overwhelmed with inquires at Black Hat about this very topic. The Art of Hacking is all about building core foundations and proving you can demonstrate the required level of skill. You may have taken other types of training in the market. So you have two options; you may take the e-Learning course as a cost-effective refresher or if you wish to validate your skills directly.
    What is unique about your teaching methodology?
    NotSoSecure founders have been training for a very long time and know what it takes to build a great Pen Tester and Security Professional. Learning about hacking is not about showing hundreds of tools, it’s about creating a framework of knowledge upon which you can build hands-on skill. We teach you the essential tools, syntax, objectives for each stage of testing and how to build you confidence to go it alone.
    How does this course compare to SANS and CEH? Why should I consider this?
    The course is a unique entry level/intermediate class. It is constantly updated and talks about a wealth of modern hacking techniques. It teaches how the latest operating systems can be compromised. It covers a vast variety of systems such as databases, application servers, operating systems, networking devices along with a comprehensive 2 days on Web application hacking. Attendees of the class walk away with a wide spectrum of hacking techniques and a good overall understanding on how systems can be compromised. Further, the online lab allows attendees to practice each and every concept hands-on. Unlike most training programs which use an off-the-shelf test bed to demonstrate security vulnerabilities, the Art of Hacking lab has custom built systems in which hacking challenges have been specifically designed to simulate out-of-box thinking and help attendees grasp the concepts inside-out.

    Training Events

    Hacking Training Classes

    Lab-Based Training - Written by BlackHat Trainers - Available Globally

    NotSoSecure classes are ideal for those preparing for CREST CCT (ICE), CREST CCT (ACE), CHECK (CTL), TIGER SST and other similar industry certifications, as well as those who perform Penetration Testing on infrastructure / web applications as a day job & wish to add to their existing skill set.

    Download the Hacking Classes Brochure

    NotSoSecure Training Journey:

    Beginner Friendly

    Hacking 101

    The Art of Hacking

    2020 Edition

    The Art of Hacking

    2020 Edition

    Infrastructure Hacking

    2020 Edition

    Web Hacking

    Specialist Offensive Classes

    2020 Edition

    Advanced Infrastructure Hacking

    2020 Edition

    Advanced Web Hacking


    Hacking and Securing Cloud Infrastructure

    Specialist Defence Classes

    2020 Edition

    AppSec for Developers