In this presentation I will cover various infrastructures and platforms that are deliberately vulnerable and can be used to learn hacking ethically. I will be covering the topics on how to setup vulnerable software (WebGoat, DVWA, VulnHub, Metasploitable etc.) and develop a fully functional ethical hacking lab that will work as the practice ground for hackers. This presentation will also cover introduction to various bug bounty platforms such as BugCrowd, HackerOne, SynAck etc. in order to practice the pen-testing on real targets.I will share few of my responsibly disclosed bugs as well.