Certified Web Application Security Tester (C-WAST)

Explore insecure direct object references (idor) and how improper authorization can expose data by letting attackers access other users' objects. Apply mitigations such as indirect reference maps.

Explore insecure direct object references through a live demo that shows how enumerating listed versus non-listed files and accessing source content can expose sensitive blog and index data.

Explore how sql injection creates a vulnerability that lets attackers bypass login by manipulating queries against the users table, potentially exposing usernames and passwords.

This lecture demonstrates SQL injection to bypass login by injecting input into username and password fields, causing a true condition (1=1) to authenticate and start a session.

Explore remote and local file inclusion, how attackers load external files, and the risks of code execution, information disclosure, and denial of service.

Demonstrates a dom xss demo by exploiting a vulnerable script function and variable to render injected content, such as hello world, and reveal a session id from the document.

Explore SQL injection bypass techniques and firewall evasion, examining how malicious inputs, encoding, case-insensitive tricks, and comments can bypass rules and reveal database details.

Explains how to bypass file type verifications in web app uploads by examining three upload implementations and showing how attackers can upload image files or malicious content.

Explore methods to bypass htaccess protection by manipulating uploads, evading checks, and leveraging hidden files and directory placement to defeat access controls.

Demonstrate how attackers perform symlink attacks on web servers, creating symlinks to access root directories, bypass index protections, and potentially view passwords stored on the server.

Explore Xenotix practical workflow to identify and exploit cross-site scripting vulnerabilities, run automated payloads, fingerprint browsers, steal cookies, log keystrokes, and simulate phishing campaigns.

Explore ironswasp theory and how an open source tool scans web apps for 25 vulnerability types, including script injection, with automated and manual testing, and a proxy to intercept traffic.

Set up the ironwasp tool in a local lab, start Apache and the MySQL database. Configure the browser proxy, intercept requests and responses, and analyze headers and bodies.

Install and set up the vulnerability scanning and exploitation tool D2 Elliot, run the program, and verify the executable status.

Learn practical exploitation concepts for vulnerability scanners within the certified web application security tester program, focusing on setup, configuration, and evaluating scanner results.

Learn to set up anonymous browsing for web application testing with Tor, install and enable testing tools in a browser-like environment, and conduct penetration testing while managing privacy settings.