Will I gain practical experience during the course?

Yes! Each module includes interactive labs, exploitation challenges, detection drills, and incident reporting exercises. You will also collect hidden flags that validate your mastery of key techniques.

Who is this course suitable for?

<text variant="body1">This course is designed for aspiring ethical hackers, penetration testers, SOC analysts, cybersecurity engineers, and IT professionals looking to strengthen hands-on skills in cyber offense and defense.

How does this course prepare me for a cybersecurity role?

<text variant="body1">You will finish with a professional incident response package and hands-on practice in both Red Team and Blue Team roles, equipping you with the skills and confidence to tackle real-world cyberthreats and excel in a cybersecurity career.

Will this course help me collaborate with cybersecurity teams?

Yes. You will practice documenting incidents, reporting findings, and communicating risk clearly. These are key skills that support effective collaboration with Security Operations Centers (SOCs) and management teams.

What will I get if I purchase the Certificate?

When you purchase a Certificate you get access to all course materials, including graded assignments. Upon completing the course, your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Ethical Hacking Capstone Project: Breach, Response, AI

Ethical Hacking Capstone Project: Breach, Response, AI

Instructors: Christo Oehley

Included with Coursera Plus

Learn more

6 modules

Gain insight into a topic and learn the fundamentals.

Advanced level

Recommended experience

2 weeks to complete

at 10 hours a week

Flexible schedule

Learn at your own pace

6 modules

Gain insight into a topic and learn the fundamentals.

Advanced level

Recommended experience

2 weeks to complete

at 10 hours a week

Flexible schedule

Learn at your own pace

What you'll learn

Demonstrate your hands-on ethical hacking expertise uncovering, remediating system vulnerabilities and leveraging AI to enhance cybersecurity skills
Gain practical experience in reconnaissance and exploitation using advanced penetration testing tools like Metasploit
Apply privilege escalation and persistence techniques to simulate real-world attacker strategies in security assessments
Strengthen defensive skills by detecting threats with OpenVAS, analyzing system logs, and documenting incidents with the MITRE ATT&CK framework

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

There are 6 modules in this course

Ready to put your ethical hacking skills to the test and power your cybersecurity career forward?

This hands-on Capture the Flag (CTF) challenge course is ideal for aspiring cybersecurity analysts, ethical hackers, and IT professionals who want to be able to demonstrate their real-world skills in offensive and defensive security to employers. During this course, you’ll start on the Red Team, using industry-standard tools such as Kali Linux, Nmap, and Metasploit to conduct reconnaissance, exploitation, privilege escalation, and persistence. Then, you’ll shift to the Blue Team, where you’ll practice log analysis, detect Indicators of Compromise, and respond to attacks using OpenVAS and the MITRE ATT&CK framework. You’ll also explore the growing role of generative AI in cybersecurity, applying AI-assisted reconnaissance, exploit generation, and anomaly detection to strengthen your strategies. Each lab will challenge you to prove your mastery, culminating in a professional-grade incident response report. If you’re keen to showcase your ethical hacking prowess and cybersecurity skills through a portfolio-worthy capstone, enroll today!

In this module, you will investigate the methods attackers use to gain initial access to a target system. Through hands-on labs, you’ll conduct active network reconnaissance with tools like Nmap and Netdiscover, create and deliver reverse shell payloads using msfvenom, and exploit vulnerabilities with the Metasploit Framework. You will verify successful exploitation and develop a deeper understanding of the tactics employed in the early stages of a cyberattack.

What's included

2 videos1 reading2 assignments8 plugins

2 videosTotal 8 minutes

Course Introduction3 minutes
Introduction to Network Reconnaissance5 minutes

1 readingTotal 10 minutes

Course Overview10 minutes

2 assignmentsTotal 57 minutes

Practice Quiz: Checklist: Initial Access36 minutes
Graded Quiz: Initial Access21 minutes

8 pluginsTotal 114 minutes

Helpful Tips for Course Completion1 minute
Reading: Capstone Project Overview3 minutes
Lab: Set Up Your Lab Environment30 minutes
Reading: Network Reconnaissance Basics11 minutes
Reading: Active Reconnaissance with Nmap8 minutes
Reading: Reconnaissance and Exploitation Overview1 minute
Lab: Initial Access and Exploitation30 minutes
Lab: Service-Specific Exploitation Challenge 30 minutes

In this module, you will learn how attackers escalate privileges after gaining initial access to a system. You’ll start by enumerating system vulnerabilities and identifying potential escalation paths. Using Metasploit's local exploit suggester, you will execute privilege escalation exploits and confirm root-level access on compromised systems.

What's included

1 video2 assignments4 plugins

1 videoTotal 5 minutes

Privilege Escalation Exploits Overview5 minutes

2 assignmentsTotal 61 minutes

Practice Quiz: Checklist: Privilege Escalation40 minutes
Graded Quiz: Privilege Escalation21 minutes

4 pluginsTotal 68 minutes

Reading: Privilege Escalation Techniques5 minutes
Reading: Root Privilege Escalation3 minutes
Lab: Achieving Root Privileges: Automated with Metasploit30 minutes
Lab: Manual Privilege Escalation and Credential Dumping30 minutes

In this module, you will learn how attackers maintain long-term access to compromised systems by implementing persistence techniques. You’ll establish automated reverse shell connections and apply anti-forensic methods to avoid detection. By the end of the lab, you will have a clearer understanding of how attackers ensure continued access, even after reboots or defensive actions.

What's included

1 video2 assignments5 plugins

1 videoTotal 4 minutes

Implementing Cron Jobs for Persistence 4 minutes

2 assignmentsTotal 41 minutes

Practice Quiz: Checklist: Persistence Techniques20 minutes
Graded Quiz: Persistence Techniques21 minutes

5 pluginsTotal 90 minutes

Reading: Persistence Methods in Cyberattacks8 minutes
Podcast: Anti-Forensic Methods5 minutes
Reading: Persistence Techniques Overview 2 minutes
Lab: Persistence Implementation on Metasploitable2: Cron-Based Beacon45 minutes
Lab: Multi-Vector Persistence and Evasion30 minutes

In this module, you will assume the role of defender by detecting and analyzing signs of system compromise using widely used cybersecurity tools. You will run vulnerability scans with OpenVAS and perform log analysis to uncover Indicators of Compromise (IOCs). This module also introduces mapping findings to the MITRE ATT&CK framework to better understand attacker behavior and improve threat response.

What's included

2 assignments5 plugins

2 assignmentsTotal 37 minutes

Practice Quiz: Checklist: Detection and Response16 minutes
Graded Quiz: Detection and Response21 minutes

5 pluginsTotal 129 minutes

Reading: Vulnerability Detection with OpenVAS (Recap)2 minutes
Podcast: Log Analysis and IOC Detection5 minutes
Reading: Detection and Response Overview 2 minutes
Lab: Detection and Log Analysis60 minutes
Lab: IOC Hunt and Containment Drill60 minutes

This module introduces learners to the emerging role of generative AI (GenAI) in cybersecurity. Learners will explore how GenAI tools can accelerate reconnaissance, automate exploit development, assist in social engineering, and enhance red team efficiency. On the defensive side, they will see how GenAI supports detection of anomalous behaviors, speeds up log analysis, and automates parts of the incident response process. Hands-on labs will provide exposure to both opportunities and risks of AI-driven hacking, while highlighting ethical and safe practices for AI use in cybersecurity.

What's included

2 videos2 assignments9 plugins

2 videosTotal 8 minutes

Using GenAI for Payload and Phishing Generation3 minutes
Log Analysis with GenAI4 minutes

2 assignmentsTotal 41 minutes

Practice Quiz: Checklist: Generative AI for Offensive and Defensive Cybersecurity 20 minutes
Graded Quiz: Generative AI for Offensive and Defensive Cybersecurity 21 minutes

9 pluginsTotal 114 minutes

Reading: AI-Driven Reconnaissance and Exploitation 6 minutes
Podcast: AI in Social Engineering Campaigns4 minutes
Reading: Offensive AI Threats and Ethical Boundaries Overview2 minutes
Lab: AI-Assisted Recon and Payload Generation 30 minutes
Reading: AI in Detection and Response6 minutes
Reading: Defending Against Adversarial AI Overview2 minutes
Lab: AI-Powered IOC Analysis30 minutes
Reading: AI-Enhanced Network Traffic Analysis with Wireshark4 minutes
Lab: AI-Assisted Packet Capture Investigation with Wireshark30 minutes

In this final stage of the capstone, you will consolidate all your work from the previous modules into a complete, professional-grade incident response package. You’ll learn how to clearly document technical findings, structure a detailed incident report, record Indicators of Compromise (IOCs), and recommend mitigation strategies. You will then package these deliverables—along with screenshots, scan results, and captured flags—into a single submission. This serves as both your final assessment and a demonstration of your ability to apply and communicate cybersecurity skills in a real-world context.

What's included

2 videos2 readings1 assignment1 app item6 plugins

2 videosTotal 8 minutes

Incident Reporting Best Practices4 minutes
Course Wrap-Up3 minutes

2 readingsTotal 4 minutes

Congratulations and Next Steps2 minutes
Thanks from the Course Team2 minutes

1 assignmentTotal 60 minutes

Final Exam: Ethical Hacking: Capture the Breach60 minutes

1 app itemTotal 30 minutes

Final Project: Submission and Evaluation30 minutes

6 pluginsTotal 53 minutes

Reading: Cybersecurity Incident Reporting 5 minutes
Podcast: Effective Communication of Security Findings 5 minutes
Reading: Incident Reporting Overview4 minutes
Reading: Creating a Final Incident Report4 minutes
Reading: Final Project Submission Guidelines5 minutes
Lab: Creating the Final Project Incident Report30 minutes

Instructors

Christo Oehley

4 Courses7,685 learners

IBM Skills Network Team

IBM

83 Courses1,557,223 learners

Offered by

IBM

Explore more from Computer Security and Networks

Status: Free Trial
Packt
Introduction to Ethical Hacking and Recon Techniques
Course
Status: Free Trial
Johns Hopkins University
Introduction to Ethical Hacking
Specialization
Status: Free Trial
LearnKartS
Ethical Hacking Fundamentals
Course
Status: Free Trial
Packt
Ethical Hacking Foundations
Course

Why people choose Coursera for their career

Felipe M.

Learner since 2018

"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."

Jennifer J.

Learner since 2020

"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."

Larry W.

Learner since 2021

"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

Open new doors with Coursera Plus

Unlimited access to 10,000+ world-class courses, hands-on projects, and job-ready certificate programs - all included in your subscription

Learn more

Advance your career with an online degree

Earn a degree from world-class universities - 100% online

Explore degrees

Join over 3,400 global companies that choose Coursera for Business

Upskill your employees to excel in the digital economy

Learn more

Frequently asked questions

You will gain hands-on experience across the full cyberattack lifecycle, from reconnaissance and exploitation to privilege escalation, persistence, detection, and incident response. You will also explore how generative AI is shaping cybersecurity and complete a capstone project that demonstrates your ability to defend and attack in real-world scenarios.

A basic foundation in networking, Linux commands, and core cybersecurity concepts will be useful. That said, the course is designed with guided instruction and hands-on labs that walk you through each step so you can confidently build your skills as you progress.

Attackers constantly evolve their methods. By learning both offensive Red Team tactics and defensive Blue Team strategies, you develop a complete perspective that helps you anticipate threats, strengthen defenses, and respond effectively.

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.