Udemy
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Development
Web Development Data Science Mobile Development Programming Languages Game Development Database Design & Development Software Testing Software Engineering Development Tools No-Code Development
Business
Entrepreneurship Communications Management Sales Business Strategy Operations Project Management Business Law Business Analytics & Intelligence Human Resources Industry E-Commerce Media Real Estate Other Business
Finance & Accounting
Accounting & Bookkeeping Compliance Cryptocurrency & Blockchain Economics Finance Finance Cert & Exam Prep Financial Modeling & Analysis Investing & Trading Money Management Tools Taxes Other Finance & Accounting
IT & Software
IT Certification Network & Security Hardware Operating Systems Other IT & Software
Office Productivity
Microsoft Apple Google SAP Oracle Other Office Productivity
Personal Development
Personal Transformation Personal Productivity Leadership Career Development Parenting & Relationships Happiness Esoteric Practices Religion & Spirituality Personal Brand Building Creativity Influence Self Esteem & Confidence Stress Management Memory & Study Skills Motivation Other Personal Development
Design
Web Design Graphic Design & Illustration Design Tools User Experience Design Game Design Design Thinking 3D & Animation Fashion Design Architectural Design Interior Design Other Design
Marketing
Digital Marketing Search Engine Optimization Social Media Marketing Branding Marketing Fundamentals Marketing Analytics & Automation Public Relations Advertising Video & Mobile Marketing Content Marketing Growth Hacking Affiliate Marketing Product Marketing Other Marketing
Lifestyle
Arts & Crafts Beauty & Makeup Esoteric Practices Food & Beverage Gaming Home Improvement Pet Care & Training Travel Other Lifestyle
Photography & Video
Digital Photography Photography Portrait Photography Photography Tools Commercial Photography Video Design Other Photography & Video
Health & Fitness
Fitness General Health Sports Nutrition Yoga Mental Health Dieting Self Defense Safety & First Aid Dance Meditation Other Health & Fitness
Music
Instruments Music Production Music Fundamentals Vocal Music Techniques Music Software Other Music
Teaching & Academics
Engineering Humanities Math Science Online Education Social Science Language Teacher Training Test Prep Other Teaching & Academics
AWS Certification Microsoft Certification AWS Certified Solutions Architect - Associate AWS Certified Cloud Practitioner CompTIA A+ Cisco CCNA CompTIA Security+ Amazon AWS Microsoft AZ-900
Graphic Design Photoshop Adobe Illustrator Drawing Digital Painting InDesign Character Design Canva Figure Drawing
Life Coach Training Neuro-Linguistic Programming Personal Development Personal Transformation Mindfulness Life Purpose Meditation CBT Emotional Intelligence
Web Development JavaScript React CSS Angular PHP Node.Js WordPress Vue JS
Google Flutter Android Development iOS Development React Native Swift Dart Programming Language Mobile Development Kotlin SwiftUI
Digital Marketing Google Ads (Adwords) Social Media Marketing Google Ads (AdWords) Certification Marketing Strategy Internet Marketing YouTube Marketing Email Marketing Retargeting
Microsoft Power BI SQL Tableau Business Analysis Data Modeling Business Intelligence MySQL Data Analysis Blockchain
Business Fundamentals Entrepreneurship Fundamentals Business Strategy Business Plan Startup Freelancing Online Business Blogging Home Business
Unity Game Development Fundamentals Unreal Engine C# 3D Game Development C++ 2D Game Development Unreal Engine Blueprints Blender
2021-04-11 04:36:02
30-Day Money-Back Guarantee
IT & Software Network & Security Ethical Hacking

Intro to Bug Bounty Hunting and Web Application Hacking

Insiders guide to ethical hacking and bug bounty hunting with Ben Sadeghipour (@NahamSec)
Hot & New
Rating: 4.8 out of 54.8 (255 ratings)
1,673 students
Created by Ben Sadeghipour
Last updated 2/2021
English
English [Auto]
30-Day Money-Back Guarantee

What you'll learn

  • Learn 10+ different vulnerability types
  • Ability to exploit basic web application vulnerabilities
  • Basics of Reconnaissance
  • How to approach a target
  • Understand how bug bounties work
  • Write better bug bounty reports
  • Includes practical hands on labs to practice your skills
  • Hack Websites for Ethical Hacking
Curated for the Udemy for Business collection

Requirements

  • Basic understanding of web technology
  • Linux basics
  • Reliable internet connection.

Description

Welcome to Intro to Bug Bounty Hunting and Web Application Hacking, your introductory course into practical bug bounty hunting. Learn ethical hacking principles with your guide and instructor Ben Sadeghipour (@NahamSec). During the day, Ben works as the head of Hacker Education at HackerOne. During his free time, Ben produces content on Twitch and YouTube for other hackers, bug bounty hunters, and security researchers. This course serves as a comprehensive guide and answers the number one question he receives, "how do I get started?"


This course will feature:

  • An overview of 10+ vulnerability types and how to find them.

  • Hands-on labs for each vulnerability type where Ben will walk you through how each bug works and how they can be further exploited.

  • A practical lab where students will be attacking a fake organization to test out their newly acquired skills.

  • An introduction to recon including asset discovery and content discovery.

  • You will learn the tools of the trade and how to set up your hacking lab

  • Introduction to bug bounty programs, how to read the scope, how to write a report a good report, and how to get your first invitation to a private bug bounty program!

This course will be updated based on changing bug types, recon tactics, and your feedback! Purchase of the course gets you lifetime access to all information and updates.


Notes & Disclaimer

This course will be updated regularly as new information becomes available. Ben is committed to providing as much assistance as possible and will be answering relevant questions within 48 hours. Please don't be discouraged if you don't immediately find a bug, this field is for resilient people committed to learning and figuring things out without much direction. Google will be your friend, and we encourage you to try things before immediately asking for a solution.

This course is meant for educational purposes only. This information is not to be used for black hat exploitation and should only be used on targets you have permission to attack.

Who this course is for:

  • Beginners in cybersecurity
  • People interested in bug bounty hunting
  • Anyone interested in ethical hacking
  • Developers looking to expand on their knowledge of vulnerabilities that may impact them
  • Anyone interested in application security
  • Anyone interested in Red teaming
  • Anyone interested in offensive security
  • Bug Bounty Hunters
  • Hack Websites for Ethical Hacking

Course content

17 sections • 82 lectures • 5h 8m total length

  • Preview01:10

  • HTTP Slides
    03:02
  • HTTP Lab
    07:04

  • Open Redirect Slides
    02:23
  • Open Redirect Lab
    03:13

  • XSS Slides
    07:21
  • XSS Lab 01
    02:31
  • Preview03:34
  • XSS Lab 03
    02:30
  • XSS Lab 04
    04:37
  • XSS Recap
    01:36

  • CSRF Slides
    04:49
  • CSRF Recap
    01:28

  • Preview04:13
  • IDOR Lab
    01:48
  • IDOR Recap
    01:30

  • LFD Slides
    06:42
  • LFD Lab
    02:13
  • LFD Recap
    01:19

  • SQL Injection Slides
    07:42
  • SQL Injection Slides 2
    06:16
  • SQL Injection Lab 01 - Error Based
    07:10
  • SQL Injection Lab 02 - Blind
    10:06
  • SQL Injection Lab 03 - SQLMap Demo
    04:03
  • SQL Injection Recap
    02:24

  • SSRF Slides
    08:32
  • SSRF Lab 01 - Netcat
    03:42
  • SSRF Lab 02 - Burp Collaborator
    03:23
  • SSRF Lab 03 - Whitelisting
    03:00
  • SSRF Lab 04 - Blind SSRF
    03:50
  • SSRF Lab 05 - Blacklisting
    04:21
  • SSRF Recap
    01:31

  • XXE Slides
    05:30
  • XXE Lab 01
    04:17
  • XXE Lab 02
    03:42
  • XXE Recap
    01:33

Instructor

Ben Sadeghipour
Hacker, Bug Bounty Hunter, Educator, & Content Creator
Ben Sadeghipour
  • 4.8 Instructor Rating
  • 255 Reviews
  • 1,673 Students
  • 1 Course

I'm Ben Sadeghipour, also known as NahamSec online where I provide educational content for people interested in ethical hacking and bug bounty hunting. Outside of content production, I am also currently the head of education at HackerOne.

I have successfully hacked into organizations like Airbnb, Apple, Valve, Lyft, Snapchat, and The US Department of Defense. I have also presented at a variety of conferences like Defcon, BSides, or OWASP's AppSec to present my research.

  • Udemy for Business
  • Teach on Udemy
  • Get the app
  • About us
  • Contact us
  • Careers
  • Blog
  • Help and Support
  • Affiliate
  • Impressum Kontakt
  • Terms
  • Privacy policy
  • Cookie settings
  • Sitemap
  • Featured courses
Udemy
© 2021 Udemy, Inc.