-
course overview
Syllabus | Cyber Rangers -
Zoom Links1 Topic
-
Module 1: Welcome to the Cyber SquadMorphing into a Cyber Ranger3 Topics
-
Whatโs in the Digital World?3 Topics
-
Cyber Threats: Meet the Villains3 Topics
-
The Cyber Defense Arsenal3 Topics
-
The Art of the Hack3 Topics
-
CTF: The First Mission2 Topics
-
Red Ranger โ Network Defender (Sessions 7-10)The Power of Firewalls3 Topics
-
DDoS Attacks: When Too Much is Too Bad3 Topics
-
Wi-Fi Security: Is Your Home Network Safe?3 Topics
-
CTF Challenge โ Network Defense
-
Blue Ranger โ Cryptography Expert (Sessions 11-14)2048 Game - Understanding Code Logic3 Topics
-
The Secret Language of Codes
-
Modern Encryption: How Does It Work?
-
Breaking the Code: Ethical Decryption
-
CTF Challenge โ Cryptography
-
Yellow Ranger โ Ethical Hacker (Sessions 15-18)Hacking for Good: The Role of Ethical Hackers
-
Social Engineering: Trick or Treat?
-
Web App Hacking: Finding Weak Spots
-
CTF Challenge โ Ethical Hacking
-
Green Ranger โ Threat Hunter (Sessions 19-20)Becoming a Threat Hunter
-
CTF Challenge โ Threat Hunting
-
Module 3: Cyber Crisis SimulationsIncident Response: Save the Cityโs Power Grid!
-
Data Breach Mystery: Find the Insider
-
Ransomware Attack: Pay or Fight?
-
Module 4: The Cyber Rangers Final BattleMega CTF Tournament
-
Final Mission: Defend Cyber City
-
Cyber Ranger Graduation
-
Where to Next? Exploring Cybersecurity Careers
-
Optional Content & Enrichment (10 Extra Sessions)Geographical Mapping
-
Red Team vs. Blue Team
-
Advanced Forensics
-
OSINT Challenges
-
Spy Games
-
Lockpicking 101 (Virtual)
-
Defusing a Virtual Bomb
-
AI in Cybersecurity
-
Create Your Own CTF Challenge
-
Internet of Things (IoT) Hacking
-
Cyber Rangers Hall of Fame
Participants 9
Theoretical Booklet – The Art of the Hack
Cyber School 07/09/2025
๐ Cyber Rangers โ Module 1, Session 5
The Art of the Hack
Understanding How Hackers Think, Act, and Exploit Systems
๐ฏ Lesson Overview
In this session, we flip perspectives: instead of thinking like defenders, we think like hackers.
Why? Because to defend against attacks, we must understand how attackers operate.
This session explores the hacker mindset, the stages of a cyberattack, common techniques, and how ethical hackers use this knowledge to protect systems.
๐ง What Is Hacking?
Originally, hacking meant finding creative ways to solve problems or improve systems.
Over time, the term became associated with breaking into systems โ especially without permission.
Today, hacking can be:
- ๐ข Ethical (White Hat): Done with permission to test security.
- ๐ด Malicious (Black Hat): Illegal and harmful.
- โช Gray Hat: Somewhere in between.
As a Cyber Ranger, you are training to think like a hacker โ but act like a defender.
๐ง The Hacker Mindset
Hackers donโt always look for the hardest path โ they look for the weakest link.
They ask:
- โWhatโs exposed?โ
- โWhatโs misconfigured?โ
- โWhat human behavior can I exploit?โ
- โHow can I get in without being noticed?โ
Hackers look for entry points, access, and advantage.
๐ The Cyber Attack Chain
Most cyberattacks follow predictable steps. Understanding these steps helps us stop them early.
- Reconnaissance (Recon):
- Researching the target online
- Scanning for exposed systems
- Reading employee social media or company websites
- Scanning / Discovery:
- Identifying open ports
- Mapping services on a network
- Finding outdated software
- Initial Access:
- Phishing emails
- Brute-forcing passwords
- Exploiting open ports or known bugs
- Payload Execution:
- Running malicious code (a โpayloadโ)
- Installing backdoors, keyloggers, ransomware
- Privilege Escalation:
- Gaining admin or root access
- Exploiting system vulnerabilities to increase power
- Persistence and Exfiltration:
- Staying hidden (e.g. by creating fake accounts)
- Stealing data, deleting logs, or causing damage
๐งฐ The Hackerโs Toolkit (Examples)
| Tool/Technique | Purpose |
|---|---|
| Port Scanner | Find open “doors” into a system |
| Keylogger | Record typed passwords and info |
| Brute Force Tool | Guess passwords quickly |
| Phishing Kit | Trick users into giving login details |
| Malware Builder | Create and customize harmful programs |
| Social Engineering | Manipulate people, not computers |
๐ Common Attack Methods
- Phishing: Fake emails that trick users into clicking bad links or giving up passwords
- Brute Force: Trying thousands of password combinations until one works
- Malware Payloads: Small programs that run once inside the system
- Exploits: Code that takes advantage of unpatched bugs
- Insider Mistakes: Weak passwords, shared accounts, lack of updates
๐งช Case Studies
๐ฅ Hospital Ransomware Attack
- Entry: Phishing email
- Spread: No MFA, shared passwords
- Outcome: Entire system locked by ransomware, patient records encrypted
๐งโ๐ School System Hack
- Entry: Brute-force guessed teacher password
- Outcome: Gradebook accessed, data modified
- Caught via digital footprint analysis
๐ก Ethical Hacking vs. Criminal Hacking
| White Hat (You) | Black Hat (Criminal) |
|---|---|
| Has permission | No permission |
| Reports problems | Exploits problems |
| Helps people | Harms people or systems |
| Legal and ethical | Illegal and unethical |
Your job is to think like a hacker โ but act like a protector.
๐ Reflection: What Could Stop the Hacker?
Most attacks begin with simple mistakes or overlooked gaps. These include:
- Weak passwords
- No multi-factor authentication (MFA)
- Unpatched software
- Poor user training
- Ignoring suspicious activity
Defenders stop attacks by:
- Thinking ahead
- Testing their own systems
- Educating others
๐ก๏ธ Cyber Ranger Code of Ethics
“I learn to defend. I do not destroy.
I explore to protect, not to harm.
I respect systems and people.
I am a Cyber Ranger.”
๐ Whatโs Next?
In the next session, youโll dive deeper into real hacking techniques โ safely and ethically โ using capture-the-flag (CTF) puzzles. Youโll learn to:
Use your knowledge to strengthen defenses
Think like an attacker
Identify weak systems
