Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Web Penetration Testing from zero to hero
Rating: 4.4 out of 5(16 ratings)
159 students

Web Penetration Testing from zero to hero

All you need to know about web penetration testing to pass professional certificates.
Created byKarim Shehata
Last updated 6/2023
Arabic

What you'll learn

  • Web application pentesting
  • prepare for eWPT & eWPTx
  • Network Basics
  • Cross site scripting XSS
  • Broken Access Control
  • Directory traversal (local file inclusion)
  • SQL Injection
  • Server side request forgery (SSRF)
  • Server side Template Injection
  • Insecure deserialization
  • XML external entity injection ( XXE)
  • Cross site request forgery (CSRF)
  • OS command injections
  • File Upload vulnerabilities
  • Information Disclosure
  • Cross origin recourse sharing (CORS)
  • JSON web tokens Attacks
  • HTTP request smuggling
  • CTF Challenges

Course content

20 sections42 lectures34h 14m total length
  • Prepare your LAB14:52

    n this Video, WE will learn how to #setup #webpentest #lab? lab setup is your first step to do any penetration testing course. We will solve #portswigger all related #labs to understand this vulnerability clearly and build #hacking #methodology that you can depend on in your journey in #cyber_security as a professional #pentester or #ethical #hacker.

    Timestamps

    00:00 Intro

    00:40 download and install kali linux

    04:30 download and install pycharm IDE

    08:29 download and install foxyproxy

    11:08 creat portswigger account

    12:45 linux terminal shortcuts



  • Linux Basics28:15
  • HTTP requests and responses19:15

    In this Video,WE will learn the basic #HTTP #Request #Response #Foundation . how https communications work ? what is Request #methods ? what is Response #status #code ? what is #url structure ? what is http #query #strings? this video will help you while you try to solve #portswigger all related #labs to understand this vulnerability clearly and build #hacking #methodology that you can depend on in your journey in #cyber_security as a professional #pentester or #ethical #hacker.

    Timestamps 

    00:00 Intro

    00:46 what is http ?

    01:55 what is url structure ?

    04:11 HTTP Requests and Responses

    13:50 http query strings


  • DVWA vulnerabilities basics42:08

    lab setup, Brute force attack, Command execution, Local file inclusion, File upload, Cross Site Scripting, Injection

Requirements

  • Basic IT knowledge and PC with good internet access

Description


Welcome to our Web Application Penetration Testing course!

Are you looking to enhance your cybersecurity skills and learn how to identify and exploit vulnerabilities in web applications? Look no further! Our course is designed to provide hands-on, practical training in web application penetration testing.


Our course will focus on solving real-world challenges and exercises on Portswigger Labs, the leading platform for hands-on web security training. You'll have the opportunity to solve more than 100 labs and practice your skills in a safe, controlled environment.


But we don't just focus on theory - our course puts a strong emphasis on practical application. You'll learn the tools and techniques used by real-world penetration testers and have the opportunity to put your skills to the test by participating in Capture The Flag (CTF) events.


And the best part? Our course is offered in Arabic, so you can learn and practice in your native language.

Don't miss out on this opportunity to become a proficient web application penetration tester. Sign up for our course today!


Portswigger Labs مرحبا بكم في دورة تدريب الاختبارات العملية لاختراف التطبيقات الإلكترونية. في هذه الدورة، سنعمل على محاكاة

للتدريب على فهم وتطبيق مهارات الاختبارات العملية لاختراق المواقع الإلكترونية.


وسوف نقوم أيضًا بحل العديد من التدريبات العملية المتعلقة بCTF


لتعزيز مهاراتنا وتحسين فهمنا للتقنيات المستخدمة في هذا المجال.  نركز في هذه الدورة على التدريب العملي أكثر من النظري، ولذلك سنقوم بحل أكثر من 100 محاكاة عملية في اللغة العربية.


إذا كنت مهتمًا بتعلم الاختبارات العملية للتدخل الخاص بالتطبيقات الإلكترونية وترغب في العمل على التدريبات العملية المتعلقة ب في اللغة العربية، فهذه الدورة مناسبة لك. اضغط هنا للتسجيل والاستفادة من هذه الفرصة الرائعة.


Who this course is for:

  • Beginner pentesters