Session Hijacking


This course covers session hijacking, where an attacker takes over a legitimately established session between a user and host. This is normally seen between a user and a Web server, but can occur with a Telnet session or other TCP-based connection.

1 hour 14 minutes
Join over 3 million cybersecurity professionals advancing their career
Sign up with

Already have an account? Sign In »

Course Description

We will cover basic information about session hijacking in Module 1. Since this is a skill-based course, we will then move into performing hands-on labs in Module 2. You will also learn how to set up and configure your own virtual environment for performing the example lab provided. The course will culminate with an assessment lab that students will need to perform (found in the supplemental resources section). Knowledge of session hijacking can be beneficial to defenders; however, this course is intended for ethical hackers (attackers). This course will be most beneficial for students that are studying for penetration testing related certifications, like the EC-Council Certified Ethical Hacker (CEH), CompTIA Pentest+, GPEN, or OSCP.


Students should be familiar with common IT and cybersecurity terminology. Students should also have basic computer knowledge and an understanding of basic computer networking. Students will also need access to Cybrary labs to complete the hands-on part of this course.

Course Goals

By the end of this course, students should be able to:

  • Explain what session hijacking is
  • Perform a session hijacking attack
Instructed By
Ken Underhill
Ken Underhill
Senior Instructor
Course Components
On Demand Videos to learn from industry leaders
Virtual Labs to gain hands on experience and apply what you learned
Certificate of Completion
Certificate Of Completion

Complete this entire course to earn a Session Hijacking Certificate of Completion