Hacking Web Application

What will I learn?

The basics of how web application works
Learn about the OWASP methodology in the web application penetration testing process
Knowledge of specific types of attacks that can be found in the real world
Find more in a database using SQL injection vulnerabilities: databases, tables and sensitive data such as passwords
Intercepting HTTP traffic using a personal proxy
Gather sensitive information in websites
Find known vulnerabilities using search engines Google Hack Database (GHDB)
Discover and exploit business logic testing on applications.
Vulnerability scoring and Mitigation

Curriculum for this course

30 Lessons 06:32:02 Hours

Course Preview

1 Lessons

Overview

Course Preparation

2 Lessons

Preparation
How to Install Kali Linux

Module 1 : Basic Web Server and Web Application

1 Lessons

Basic Web Server and Web Application

Module 2 : Apache Installation

1 Lessons

Apache Installation

Module 3 : Database Installation

1 Lessons

Database Installation

Module 4 : Database Logging

1 Lessons

Database Logging

Module 5 : Web Application Logging

1 Lessons

Web Application Logging

Module 6 : Web Application Raw Request and Response

1 Lessons

Web Application Raw Request and Response

Module 7 : Proxy Tools Usage

1 Lessons

Proxy Tools Usage

Module 8 : Proxy Tools Utilization

1 Lessons

Proxy Tools Utilization

Module 9 : Web Security Testing Guide (WSTG)

1 Lessons

Web Security Testing Guide (WSTG)

Module 10 : OWASP Top 10

1 Lessons

OWASP Top 10

Module 11 : A1 : 2021 - Broken Access Control

1 Lessons

A1 : 2021 - Broken Access Control

Module 12 : A2 : 2021 - Cryptographic Failures

1 Lessons

A2 : 2021 - Cryptographic Failures

Module 13 : A3 : 2021 - Injection

1 Lessons

A3 : 2021 - Injection

Module 14 : A4 : 2021 - Insecure Design

1 Lessons

A4 : 2021 - Insecure Design

Module 15 : A5 : 2021 - Security Misconfiguration

1 Lessons

A5 : 2021 - Security Misconfiguration

Module 16 : A6 : 2021 - Vulnerable and Outdated Components

1 Lessons

A6 : 2021 - Vulnerable and Outdated Components

Module 17 : A7 : 2021 - Identification and Authentication Failures

1 Lessons

A7 : 2021 - Identification and Authentication Failures

Module 18 : A8 : 2021 - Software and Data Integrity Failures

1 Lessons

A8 : 2021 - Software and Data Integrity Failures

Module 19 : A9 : 2021 - Security Logging and Monitoring Failures

1 Lessons

A9 : 2021 - Security Logging and Monitoring Failures

Module 20 : A10 : 2021 - Server-Side Request Forgery

1 Lessons

A10 : 2021 - Server Side Request Forgery

Module 21 : Vulnerability Scanner

1 Lessons

Vulnerability Scanner

Module 22 : Tools Utilization Sqlmap

1 Lessons

Tools Utilization Sqlmap

Module 23 : Business Logic Testing

1 Lessons

Business Logic Testing

Module 24 : Impact of Vulnerability

1 Lessons

Impact of Vulnerability

Module 25 : CVSS

1 Lessons

Common Vulnerability Scoring System (CVSS)

Module 26 : OWASP Risk Rating

1 Lessons

OWASP Risk Rating

Module 27 : Reporting

1 Lessons

Reporting

Requirements

Computer with a minimum of 4GB ram/memory
A computer for installing all the free software and tools needed to practice
A strong desire to understand hacker tools and techniques
A strong work ethic and willingness to learn
Nothing else! It’s just you, your computer and your ambition to get started today

+ View more

Description

This course is specially designed for those who are interested to learn the nature of attacks on web applications. With a focus on the OWASP Top 10 attacks that are happening in the real world, participants will also be able to tackle business logic testing practically, as well as understand the vulnerability scoring.

+ View more

Other related courses

Student feedback

Average rating