Complete Web Application Hacking & Penetration Testing
- 9 hours on-demand video
- Full lifetime access
- Access on mobile and TV
- Certificate of Completion
Get your team access to 4,000+ top Udemy courses anytime, anywhere.
Try Udemy for Business- Advanced Web Application Penetration Testing
- Terms, standards, services, protocols and technologies
- Setting up Virtual Lab Environment
- Software and Hardware Requirements
- Modern Web Applications
- Web Application Architectures
- Web Application Hosting
- Web Application Attack Surfaces
- Web Application Defenses
- Core technologies
- Web Application Proxies
- Whois Lookup
- DNS Information
- Subdomains
- Discovering Web applications on the Same Server
- Web Crawling and Spidering - Directory Structure
- Authentication Testing
- Brute Force and Dictionary Attacks
- Cracking Passwords
- CAPTCHA
- Identifying Hosts or Subdomains Using DNS
- Authorization Testing
- Session Management Testing
- Input Validation Testing
- Testing for Weak Cryptography
- Client Side Testing
- Browser Security Headers
- Using Known Vulnerable Components
- Bypassing Cross Origin Resource Sharing
- XML External Entity Attack
- Attacking Unrestricted File Upload Mechanisms
- Server-Side Request Forgery
- Creating a Password List: Crunch
- Attacking Insecure Login Mechanisms
- Attacking Improper Password Recovery Mechanisms
- Attacking Insecure CAPTCHA Implementations
- Inband SQL Injection over a Search Form
- Inband SQL Injection over a Select Form
- Time Based Blind SQL Injection
- A computer with internet connection
- Operating System: Windows / OS X / Linux
- 6 GB ram/memory
- Be familiar with web sites and general technology. That`s all!
Hello,
Welcome to my Complete Web Application Hacking & Penetration Testing course.
Web Applications run the world. From social media to business applications almost every organization has a web application and does business online. So, we see a wide range of applications being delivered every day.
In this course, you will learn how to use black hat hacker tools and follow their ways to compromise Web Applications.
This course will take you from beginner to advance level. You will learn Web Application Hacking & Penetration Testing step-by-step with hands-on demonstrations.
We are going to start by figuring out what the security issues are that are currently in the field and learn testing methodologies and types. Then we are going to build a lab environment for you to apply what you get from the course and of course, the lab is gone cost you nothing. Then we are going to start with some theory, you know, you should have the philosophy so we can always stay on the same page.
Basic web and internet technologies such as HTML, HTTP, Document Object Model and so on, these are absolutely needed so that we can complete testing experience. And then we are gonna cover the reconnaissance section, we will gather information about the target and how to use that information to model an attack. After that, we will tackle the user management issues. Apart from that, we will also try to expose the session management problems.
In the input validation section, we are gonna show why data validation is absolutely important for web applications. So attacks such as Cross-Site Scripting, SQL Injection and many more we are gonna examine the whole bunch of different types. We also have a cryptography section with some basic attacks. After that, we will discuss some known web application attacks (such as Drupal SQL injection aka Druppageddon).
At the end of the course, you will learn;
Testing Methodologies and Types,
Basic Web and Internet Technologies such as HTML, HTTP, Document Object Model and so on,
To Gather Information About the Target and Use This Information to Model an Attack.
User Management Issues.
Exposing The Session Management Problems.
Data Validation
Attacks such as Cross-Site Scripting, SQL Injection and many more
Some Basic Attacks in Cryptography
Web Application Attacks Such As Drupal SQL injection ( aka Druppageddon )
And More to Enrich Your Penetration Testing Skills.
Video and Audio Production Quality
All our videos are created/produced as high-quality video and audio to provide you the best learning experience.
You will be,
Seeing clearly
Hearing clearly
Moving through the course without distractions
You'll also get:
✔ Lifetime Access to The Course
✔ Fast & Friendly Support in the Q&A section
✔ Udemy Certificate of Completion Ready for Download
Dive in now!
We offer full support, answering any questions.
See you in the course!
IMPORTANT: This course is created for educational purposes and all the information learned should be used when the attacker is authorized.
- Anybody who is interested in learning web application hacking
- Anybody who is interested in learning penetration testing
- Anybody who wants to become a penetration tester
- Anybody who wants to learn how hackers hack web applications and websites
- Anyone who are developing web so that they can create secure web applications