Will I gain practical experience during the course?

Yes! Each module includes interactive labs, exploitation challenges, detection drills, and incident reporting exercises. You will also collect hidden flags that validate your mastery of key techniques.

Who is this course suitable for?

<text variant="body1">This course is designed for aspiring ethical hackers, penetration testers, SOC analysts, cybersecurity engineers, and IT professionals looking to strengthen hands-on skills in cyber offense and defense.

How does this course prepare me for a cybersecurity role?

<text variant="body1">You will finish with a professional incident response package and hands-on practice in both Red Team and Blue Team roles, equipping you with the skills and confidence to tackle real-world cyberthreats and excel in a cybersecurity career.

Will this course help me collaborate with cybersecurity teams?

Yes. You will practice documenting incidents, reporting findings, and communicating risk clearly. These are key skills that support effective collaboration with Security Operations Centers (SOCs) and management teams.

What will I get if I subscribe to this Certificate?

When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Ethical Hacking Capstone Project: Breach, Response, AI

Ethical Hacking Capstone Project: Breach, Response, AI

本课程是 IBM Ethical Hacking with Open Source Tools 专业证书的一部分

位教师：Christo Oehley

包含在中

了解更多

6个模块

深入了解一个主题并学习基础知识。

高级设置等级

推荐体验

2 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

6个模块

深入了解一个主题并学习基础知识。

高级设置等级

推荐体验

2 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

您将学到什么

Demonstrate your hands-on ethical hacking expertise uncovering, remediating system vulnerabilities and leveraging AI to enhance cybersecurity skills
Gain practical experience in reconnaissance and exploitation using advanced penetration testing tools like Metasploit
Apply privilege escalation and persistence techniques to simulate real-world attacker strategies in security assessments
Strengthen defensive skills by detecting threats with OpenVAS, analyzing system logs, and documenting incidents with the MITRE ATT&CK framework

您将获得的技能

要了解的详细信息

可分享的证书

添加到您的领英档案

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累 Computer Security and Networks 领域的专业知识

本课程是 IBM Ethical Hacking with Open Source Tools 专业证书专项课程的一部分

在注册此课程时，您还会同时注册此专业证书。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
通过 IBM 获得可共享的职业证书

该课程共有6个模块

Ready to put your ethical hacking skills to the test and power your cybersecurity career forward?

This hands-on course is ideal for aspiring cybersecurity analysts, ethical hackers, and IT professionals who want to be able to demonstrate their real-world skills in offensive and defensive security to employers. During this course, you’ll start on the Red Team, using industry-standard tools such as Kali Linux, Nmap, and Metasploit to conduct reconnaissance, exploitation, privilege escalation, and persistence. Then, you’ll shift to the Blue Team, where you’ll practice log analysis, detect Indicators of Compromise, and respond to attacks using OpenVAS and the MITRE ATT&CK framework. You’ll also explore the growing role of generative AI in cybersecurity, applying AI-assisted reconnaissance, exploit generation, and anomaly detection to strengthen your strategies. Each lab will challenge you to prove your mastery, culminating in a professional-grade incident response report. If you’re keen to showcase your ethical hacking prowess and cybersecurity skills through a portfolio-worthy capstone, enroll today!

In this module, you will investigate the methods attackers use to gain initial access to a target system. Through hands-on labs, you’ll conduct active network reconnaissance with tools like Nmap and Netdiscover, create and deliver reverse shell payloads using msfvenom, and exploit vulnerabilities with the Metasploit Framework. You will verify successful exploitation and develop a deeper understanding of the tactics employed in the early stages of a cyberattack.

涵盖的内容

2个视频1篇阅读材料2个作业8个插件

2个视频总计8分钟

Course Introduction3分钟
Introduction to Network Reconnaissance5分钟

1篇阅读材料总计10分钟

Course Overview10分钟

2个作业总计57分钟

Graded Quiz: Initial Access21分钟
Practice Quiz: Checklist: Initial Access36分钟

8个插件总计114分钟

Helpful Tips for Course Completion1分钟
Reading: Capstone Project Overview3分钟
Lab: Set Up Your Lab Environment30分钟
Reading: Network Reconnaissance Basics11分钟
Reading: Active Reconnaissance with Nmap8分钟
Reading: Reconnaissance and Exploitation Overview1分钟
Lab: Initial Access and Exploitation30分钟
Lab: Service-Specific Exploitation Challenge 30分钟

In this module, you will learn how attackers escalate privileges after gaining initial access to a system. You’ll start by enumerating system vulnerabilities and identifying potential escalation paths. Using Metasploit's local exploit suggester, you will execute privilege escalation exploits and confirm root-level access on compromised systems.

涵盖的内容

1个视频2个作业4个插件

1个视频总计5分钟

Privilege Escalation Exploits Overview5分钟

2个作业总计61分钟

Graded Quiz: Privilege Escalation21分钟
Practice Quiz: Checklist: Privilege Escalation40分钟

4个插件总计68分钟

Reading: Privilege Escalation Techniques5分钟
Reading: Root Privilege Escalation3分钟
Lab: Achieving Root Privileges: Automated with Metasploit30分钟
Lab: Manual Privilege Escalation and Credential Dumping30分钟

In this module, you will learn how attackers maintain long-term access to compromised systems by implementing persistence techniques. You’ll establish automated reverse shell connections and apply anti-forensic methods to avoid detection. By the end of the lab, you will have a clearer understanding of how attackers ensure continued access, even after reboots or defensive actions.

涵盖的内容

1个视频2个作业5个插件

1个视频总计4分钟

Implementing Cron Jobs for Persistence 4分钟

2个作业总计41分钟

Graded Quiz: Persistence Techniques21分钟
Practice Quiz: Checklist: Persistence Techniques20分钟

5个插件总计90分钟

Reading: Persistence Methods in Cyberattacks8分钟
Podcast: Anti-Forensic Methods5分钟
Reading: Persistence Techniques Overview 2分钟
Lab: Persistence Implementation on Metasploitable2: Cron-Based Beacon45分钟
Lab: Multi-Vector Persistence and Evasion30分钟

In this module, you will assume the role of defender by detecting and analyzing signs of system compromise using widely used cybersecurity tools. You will run vulnerability scans with OpenVAS and perform log analysis to uncover Indicators of Compromise (IOCs). This module also introduces mapping findings to the MITRE ATT&CK framework to better understand attacker behavior and improve threat response.

涵盖的内容

2个作业5个插件

2个作业总计37分钟

Graded Quiz: Detection and Response21分钟
Practice Quiz: Checklist: Detection and Response16分钟

5个插件总计129分钟

Reading: Vulnerability Detection with OpenVAS (Recap)2分钟
Podcast: Log Analysis and IOC Detection5分钟
Reading: Detection and Response Overview 2分钟
Lab: Detection and Log Analysis60分钟
Lab: IOC Hunt and Containment Drill60分钟

This module introduces learners to the emerging role of generative AI (GenAI) in cybersecurity. Learners will explore how GenAI tools can accelerate reconnaissance, automate exploit development, assist in social engineering, and enhance red team efficiency. On the defensive side, they will see how GenAI supports detection of anomalous behaviors, speeds up log analysis, and automates parts of the incident response process. Hands-on labs will provide exposure to both opportunities and risks of AI-driven hacking, while highlighting ethical and safe practices for AI use in cybersecurity.

涵盖的内容

2个视频2个作业9个插件

2个视频总计8分钟

Using GenAI for Payload and Phishing Generation3分钟
Log Analysis with GenAI4分钟

2个作业总计41分钟

Graded Quiz: Generative AI for Offensive and Defensive Cybersecurity 21分钟
Practice Quiz: Checklist: Generative AI for Offensive and Defensive Cybersecurity 20分钟

9个插件总计114分钟

Reading: AI-Driven Reconnaissance and Exploitation 6分钟
Podcast: AI in Social Engineering Campaigns4分钟
Reading: Offensive AI Threats and Ethical Boundaries Overview2分钟
Lab: AI-Assisted Recon and Payload Generation 30分钟
Reading: AI in Detection and Response6分钟
Reading: Defending Against Adversarial AI Overview2分钟
Lab: AI-Powered IOC Analysis30分钟
Reading: AI-Enhanced Network Traffic Analysis with Wireshark4分钟
Lab: AI-Assisted Packet Capture Investigation with Wireshark30分钟

In this final stage of the capstone, you will consolidate all your work from the previous modules into a complete, professional-grade incident response package. You’ll learn how to clearly document technical findings, structure a detailed incident report, record Indicators of Compromise (IOCs), and recommend mitigation strategies. You will then package these deliverables—along with screenshots, scan results, and captured flags—into a single submission. This serves as both your final assessment and a demonstration of your ability to apply and communicate cybersecurity skills in a real-world context.

涵盖的内容

2个视频2篇阅读材料1个作业1个应用程序项目6个插件

2个视频总计8分钟

Incident Reporting Best Practices4分钟
Course Wrap-Up3分钟

2篇阅读材料总计4分钟

Congratulations and Next Steps2分钟
Thanks from the Course Team2分钟

1个作业总计60分钟

Final Exam: Ethical Hacking: Capture the Breach60分钟

1个应用程序项目总计30分钟

Final Project: Submission and Evaluation30分钟

6个插件总计53分钟

Reading: Cybersecurity Incident Reporting 5分钟
Podcast: Effective Communication of Security Findings 5分钟
Reading: Incident Reporting Overview4分钟
Reading: Creating a Final Incident Report4分钟
Reading: Final Project Submission Guidelines5分钟
Lab: Creating the Final Project Incident Report30分钟

获得职业证书

将此证书添加到您的 LinkedIn 个人资料、简历或履历中。在社交媒体和绩效考核中分享。

位教师

Christo Oehley

4 门课程10,713 名学生

IBM Skills Network Team

85 门课程1,671,046 名学生

提供方

IBM

从 Computer Security and Networks 浏览更多内容

状态：免费试用
Packt
Ethical Hacking Foundations
课程
状态：免费试用
Packt
Ethical Hacking Foundations & Network Security
课程
状态：免费试用
Packt
The Complete Ethical Hacking Course
专项课程
状态：免费试用
IBM
Cybersecurity Case Studies and Capstone Project
课程

人们为什么选择 Coursera 来帮助自己实现职业发展

Felipe M.

自 2018开始学习的学生

''能够按照自己的速度和节奏学习课程是一次很棒的经历。只要符合自己的时间表和心情，我就可以学习。'

Jennifer J.

自 2020开始学习的学生

''我直接将从课程中学到的概念和技能应用到一个令人兴奋的新工作项目中。'

Larry W.

自 2021开始学习的学生

''如果我的大学不提供我需要的主题课程，Coursera 便是最好的去处之一。'

Chaitanya A.

''学习不仅仅是在工作中做的更好：它远不止于此。Coursera 让我无限制地学习。'

通过 Coursera Plus 开启新生涯

无限制访问 10,000+ 世界一流的课程、实践项目和就业就绪证书课程 - 所有这些都包含在您的订阅中

了解更多

通过在线学位推动您的职业生涯

获取世界一流大学的学位 - 100% 在线

探索学位

加入超过 3400 家选择 Coursera for Business 的全球公司

提升员工的技能，使其在数字经济中脱颖而出

了解更多

常见问题

You will gain hands-on experience across the full cyberattack lifecycle, from reconnaissance and exploitation to privilege escalation, persistence, detection, and incident response. You will also explore how generative AI is shaping cybersecurity and complete a capstone project that demonstrates your ability to defend and attack in real-world scenarios.

A basic foundation in networking, Linux commands, and core cybersecurity concepts will be useful. That said, the course is designed with guided instruction and hands-on labs that walk you through each step so you can confidently build your skills as you progress.

Attackers constantly evolve their methods. By learning both offensive Red Team tactics and defensive Blue Team strategies, you develop a complete perspective that helps you anticipate threats, strengthen defenses, and respond effectively.

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.