Submit
Recon for bug bounty, penetration testers & ethical hackers – Free Udemy Course
🌐 English⭐ 5
$19.99Free

Recon for bug bounty, penetration testers & ethical hackers

About This Free Course

This course is fully made for website reconnaissance  for bug bounty hunters, penetration testers & network mastery for ethical hackers. This is a intermediate level course all the topics are discussed here regarding recon on websites.

Some of the topics are what is reconnaissance, what is recon , recon for bug bounty hunters and penetration testers, Subdomain enumeration, URL enumeration, parameter bruteforcing, Creating your own recon tools and many more...

This course is fully focused on website recon and vulnerability assessment.

There will be full methodology of website reconnaissance, bug bounty hunting, penetration testing. The videos are divided into small sections for the students to learn.

All the resources are provided in the resource section including links, pdf, payloads that are used in course.


Course Curriculum :

  1. Introduction

  1. Introduction to recon

  • Subdomain enumeration from tools

    1. Subdomain enumeration #1

  • Subdomain enumeration #2

  • Subdomain enumeration #3

  • Subdomain enumeration #4

  • Subdomain bruteforcing

  • Filtering unique domains

  • Subdomain generator

  • Subdomain enumeration from websites

    1. Subdomain enumeration from website #1

  • Subdomain enumeration from website #2

  • Subdomain enumeration from website #3

  • Subdomain enumeration from website #4

  • Filtering live domains

    1. Filtering live domains

  • URL extraction from the internet

    1. URL extraction from the internet #1

  • URL extraction from the internet #2

  • Finding parameters

    1. Finding parameters

  • Parameter bruteforcer

  • Finding URL from past

    1. URL from past

  • Sorting urls

    1. Sorting url for vulnerabilities

  • Automation for replacing parameters with Payloads

    1. Automation for replacing parameters with Payloads

  • Footprinting websites ( Website recon )

    1. Whatweb recon

  • Netcraft

  • Security headers

  • Dnsdumpmaster

  • Whois recon

  • Mxtoolbox

  • OSINT

  • Maltego

  • Browser addons for recon

    1. wappalyzer

  • retire.js

  • shodan

  • Knoxx

  • Hack-tools addon

  • WAF idetification

    1. WAF identification

  • Subdomain takeover

    1. HostileSubBruteForcer

  • Sub404

  • Subjack

  • Fuzzing (Content-Discovery)

    1. dirb

  • ffuf

  • Port scanning

    1. Introduction to nmap

  • Port specification in nmap

  • Service and version detection from nmap

  • Firewall bypass technique

  • Fast port scanning

    1. nabbu

  • masscan

  • Visual recon

    1. Gowitness

  • Google dorking

    1. Introduction to google dorking

  • Understnding the URL structure

  • Syntax of google dorking

  • Google dorking operators

  • Google search operators ( Part - 1 )

  • Google search operators ( Part - 2 )

  • Google dorking practical

    1. Introduction to practical google dorking

  • How to find directory listing vulnerabilities ?

  • How to dork for wordpress plugins and thems ?

  • How to dork for web servers versions ?

  • How to dork for application generated system reports ?

  • Dorking for SQLi

  • Reading materials for google dorking

  • Tips for advance google dorking

    1. Tip #1

  • Tip #2

  • Tip #3

  • Shodan dorking

    1. Intro to shodan dorking

  • Shodan web interface

  • Shodan search filters

  • Shodan dorking practical

    1. Finding server

  • Finding fIles and directories

  • Finding operating systems

  • Finding compromised devices and websites

    1. Introduction to shodan command line

  • Practical shodan in command line

  • Github dorking

    1. Introduction to github dorking

  • Github dorking practical

  • Vulnerability scanning

    1. Nuclei

  • Wp-Scan

  • Scanning with burpsuite

  • Metasploit for recon

    1. DNS recon using metasploit

  • Sub-domain enumeration using metasploit

  • E-mail address finding

  • Port scanning using metasploit

    1. TCP SYN port scan using metasploit

  • SSH version detection

  • FTP version enumeration

  • MySQL version detection

  • HTTP enumeration

  • Payloads for bug bounty hunters

    1. Payloads for bug hunters and enetration testers

  • How to create tools for recon ?

    1. SSRF finder tool

  • XSS finding too

  • URL extractor from javascript files

  • Full website recon tool

  • Bonus

    1. Bonus video

    Thank you :)

    Vivek Pandit


    Frequently Asked Questions

    Is this course really free?

    Yes — we provide a verified 100% OFF Udemy coupon. Enroll directly on Udemy, no credit card needed. Coupons are time-limited so enroll quickly.

    How long does the free coupon last?

    Most Udemy 100% OFF coupons last 1–3 days or up to 1,000 enrollments. FreeWebCart verifies coupons before listing, but enroll as soon as possible.

    Will I keep access after the coupon expires?

    Yes. Once enrolled, the course is yours forever — even after the coupon expires. You keep lifetime access on Udemy.

    Enroll Free on Udemy - Apply 100% Coupon

    Save $19.99 - Limited time offer

    More Free Udemy Courses

    Google Cloud Digital Leader Practice Exam 360 Questions 2026
    38 mins ago
    FREE
    Udemy Coupons

    Google Cloud Digital Leader Practice Exam 360 Questions 2026

    👁ī¸ 0⭐ 5
    Free
    GitHub Copilot GH-300 Practice Exams - 390 Questions - 2026
    45 mins ago
    FREE
    Udemy Coupons

    GitHub Copilot GH-300 Practice Exams - 390 Questions - 2026

    👁ī¸ 0⭐ 4.5
    Free
    Google Cloud GenAI Leader Practice Exam 300 Questions 2026
    51 mins ago
    FREE
    Udemy Coupons

    Google Cloud GenAI Leader Practice Exam 300 Questions 2026

    👁ī¸ 0⭐ 4.5
    Free
    Modelado de Procesos de Negocio usando IA
    2 hours ago
    FREE
    Udemy Coupons

    Modelado de Procesos de Negocio usando IA

    👁ī¸ 0⭐ 4.5
    Free