What you'll learn

Learn the proper Penetration Testing process for Website Application
Learn the difference between active and passive reconnaissance and how to leverage sites and tools to build a technical understanding of the target’s assets.
Learn how to properly identify vulnerabilities
Learn how to exploit vulnerabilities manually (via TryHackMe)
Learn the basic components to write a professional penetration testing report for web application

Course content

9 sections • 70 lectures • 4h 2m total length

Whoami and Course Introduction5:45
Lab Setup and Discord Server1:58
Set up the lab on Try Hack Me, configure VMware and Kali Linux VM, access the WAPT lab room, manage payloads and tools, and join the Discord server for Q&A.
Introduction to Web App Penetration Testing5:20
Explore web application penetration testing through pre-attack, attack, and post-attack phases, including black/gray/white box methods, scanners, and reporting on regulatory compliance and vendor assessments.

Asset Discovery Overview4:33
Whoxy0:27
Whoxy - Demo3:03
Google Advanced Search0:40
Google Advanced Search - Demo2:25
Demonstrates Google advanced search techniques to enumerate subdomains and assets for a target domain, showing how to filter results and widen the testing scope.
Shodan1:35
Shodan enables asset discovery as a search engine for internet-connected devices and service banners. It uses SSL common names, net blocks, and dork queries on assets like Facebook in 31.13.72.0/24.
Shodan - Demo4:02
Use Shodan to identify assets of facebook.com, listing hostnames, IPs, and organizations from SSL certificates. Filter by subnet and org, revealing subdomains owned by Facebook Ireland Ltd.
Autonomous System Number (ASN)1:10
Explore autonomous system numbers and asset discovery by identifying an organization's ip prefixes, determining the target ip, and performing an asn lookup to reveal additional assets.
Autonomous System Number (ASN) - Demo2:50
Cloudflare0:39
Explore asset discovery using Cloudflare, one of the internet's largest networks, to understand how DNS enumeration reveals assets owned by the target.
Cloudflare - Demo2:11
Certificate Transparency0:50
Certificate Transparency - Demo2:56
Subfinder0:39
Discover valid subdomains through asset discovery with subfinder, a project discovery tool. Install subfinder, use online sources, and run commands to enumerate subdomains.
Subfinder - Demo2:45

Content Discovery Overview0:31
Explore content discovery by identifying publicly accessible assets, profiling technologies used, and enumerating directories and files, while learning the tools highlighted in this lesson.
HTTP Probing using httpx0:45
HTTP Probing using httpx - Demo6:06
Visual Identification using Aquatone1:40
Visual Identification using Aquatone - Demo2:48
Technology Profiling using Builtwith and Wappalyzer1:15
Technology Profiling using Builtwith and Wappalyzer - Demo3:10
Fuzzing using ffuf0:33
Fuzzing using ffuf - Demo4:52
URL Extraction using gau0:52
URL Extraction using gau - Demo1:47
Demonstrates using gau to extract URLs from a target domain, inspect results, and fetch subdomains, with options to save output to a file.
Endpoint Extraction using LinkFinder1:03
Endpoint Extraction using LinkFinder - Demo1:14
Parameter Discovery using ParamSpider0:50
Discover parameters in a target domain with Param Spider, a Python script for content discovery. Install requirements, run the tool with python3, and specify your target domain to see results.
Parameter Discovery using ParamSpider - Demo1:19

Open Source Scanners Overview0:28
WPScan Overview0:43
WPScan - Demo5:00
Joomscan Overview0:45
Explore Joomscan, an open source tool that automates vulnerability detection and reliability assurance for web apps; learn to run it with a target asset and follow the Daily Bugle demonstration.
Joomscan - Demo2:58
Droopescan Overview0:42
Droopescan - Demo3:19
CMSeeK Overview0:29
CMSeeK - Demo1:51
Nuclei Overview0:56
Nuclei - Demo5:17
Introduction to BurpSuite5:05

Top Vulnerabilities and Weakness Classification4:42
Domain/Subdomain Takeover Overview4:47
Domain/Subdomain Takeover - Demo3:19
Path Traversal and Local File Inclusion Overview9:25
Remote File Inclusion Overview3:45
OS Command Injection Overview9:45
Explore os command injection, a vulnerability that lets attackers execute system commands on the target app, with chaining techniques and prevention like input validation and web application firewalls.
Cross-Site Scripting Overview9:14
SQL Injection Overview10:59
Exposure of Git Repository Overview3:46
Information Exposure Overview6:16
Information Exposure - Demo11:05
Brute Force Overview5:37
Unrestricted File Upload Overview8:54
Insecure Direct Object Reference Overview3:41
XML External Entities Overview4:52
Server-Side Request Forgery Overview4:41
Server-Side Template Injection Overview5:01

Severity Levels4:32
Apply severity levels to each vulnerability using the common vulnerabilities scoring system version 3.1, prioritizing fixes by eight metrics: attack vector, complexity, privileges, user interaction, scope, confidentiality, integrity, and availability.
Penetration Testing Report9:23
Learn how to craft a structured penetration testing report that documents findings, severity, scope, methodology, and remediation recommendations to help executives decide on security controls.

Requirements

Patience and desire to learn
A computing environment with at least 8GB of RAM and 20GB of disk space
Latest VMware Player, VMware Workstation, or VMware Fusion installed. Other virtualization software such as Parallels or VirtualBox will probably work if the attendee is familiar with its functionality. However, VMware is most recommended.
Comfort in the command line of Linux
Basic IT knowledge
Familiarity with programming concepts is recommended but not required

Description

The Web App Penetration Testing course is an online and self-paced technical training course that provides all the basic skills necessary to carry out a thorough and professional penetration test against website applications.

This technical training course was designed for those having no experience in testing the security of a website application, but wanting to learn how to start and properly execute the website application penetration testing so that they can use it for their organization to effectively protect their assets against cyber attacks or for individuals who would like to kick-off their career in information security.

This technical training course will help students move beyond the push-button scanning to professional, thorough, and high-value web application penetration testing. This will also enable students to assess the website application's security posture and convincingly demonstrate the business impact should attackers exploit the discovered security vulnerability.

This technical training course will be updated from time to time based on the tactics, techniques and procedures of each security vulnerability. So purchasing this course gets you a lifetime access to all updates.

Note that this technical training course is meant for education purpose only. Any actions and/or activities related to the material contained within this course is solely your responsibility. The instructor will not be held responsible in the event any criminal charges be brought against any individuals misusing the information used in this course to break the law.

Who this course is for:

Individuals who are interested in pursuing a career in Offensive Security
Government and Private employees who would like to protect their website applications
Security professionals who would like to transition from other areas of Cybersecurity to Offensive Security

What you'll learn

Explore related topics

Course content

Introduction3 lectures • 13min

Pre-Attack Phase4 lectures • 15min

Pre-Attack Phase: Asset Discovery15 lectures • 31min

Pre-Attack Phase: Content Discovery15 lectures • 29min

Attack Phase: Open Source Scanners and BurpSuite12 lectures • 28min

Attack Phase: Vulnerabilities17 lectures • 1hr 50min

Post-Attack Phase2 lectures • 14min

Practical Website Application Penetration Testing Certification Path1 lecture • 3min

Closing1 lecture • 1min

Requirements

Description

Who this course is for: