White hat, black hat, grey hat
White hat: authorized testing. Black hat: illegal exploitation. Grey hat: unauthorized but sometimes disclosed. Always stay white hat — use lab platforms and bug bounty programs with defined scope.
Typical ethical hacking process
Reconnaissance → scanning → vulnerability identification → exploitation → post-exploitation → reporting. Labs compress this into focused exercises per vulnerability type.
Legal framework
In India, unauthorized access violates the IT Act. Only test systems you own or have a signed scope of work / bug bounty authorization for.
Skills ethical hackers need
Networking, Linux, web technologies, scripting (Python/Bash), understanding of OWASP Top 10, report writing. Cyfotok builds web exploitation skills from day one.