With an ever-changing online environment, security is a constantly growing concern. It's hard for web developers to keep up with new and emerging techniques that attackers may use to hack into a site. In such a scenario, Kali Linux emerges as a powerful package to penetration test your website or application.
Kali Linux Web App Testing will help you prevent different cyber attacks from basic vulnerabilities to ones less spoken of. Firstly, you will be introduced to injection techniques such as SQL injection along with SQLMap. After that, you'll learn what XSS injection is and how to use XSSER against it. Then you'll walk through local and remote file inclusions and ways to counteract them. You'll also learn other cyber invasions such as Remote Command Execution and Cross Site Request Forgery. Furthermore, you'll see what Open Redirects and Open Proxies are and how to tackle them. Finally, you'll learn the concept of Clickjacking and how to avoid it. Towards the end of this course, you'll not only be familiar with various cyber attacks and vulnerabilities, but also know different approaches to deal with them.
The course follows a strict hands-on approach; combined with practical examples, it will help you to understand, how these attacks work and how to combat them effectively.
About the Author
Jack (linkcabin) is a UK-based independent security researcher, who has a huge passion for information security. He loves reverse engineering, finding vulnerabilities in web applications, and creating video content. He is in the Halls of Fame of Netflix, AT&T, and eBay. Jack also catalogues some of his more technical findings on a blog, and various information security professionals read about them. Much of his day is spent e-mailing companies about vulnerabilities that he comes across in their websites. He finds the offensive side of security an interesting area, and is passionate about researching and communicating with various people about the importance of security. He also aims to change the existing public opinion on hackers.
Talk about different features that Kali Linux has to offer.
Create our work environment to work with Kali Linux.
Understand the basic concepts of Kali Linux.
Understand how to trigger SQL errors to show a possibility of a SQL Injection.
Learn about some of sqlmap's command-line arguments.
Explain the more obscure arguments.
Learn what the concept of XSS is.
Working with XSSER in GUI.
Filtering out injections correctly.
Understand the basics of brute-forcing.
Explore the fundamentals of Hashcat.
Discuss the concept of form brute-forcing.
Discover how powerful Hydra can be.
Learn about the various parts of vulnerability scanners.
Study the main concept of open redirects and open proxies.
Know what remote command execution is.
Understand the term "Information Disclosure."
How tampering data can be useful in a manual scan of a site.
Learn what two-factor authentication is and how it can be effective.
Understand how weak passwords can be mitigated and how to possibly defend against phishing.
Comprehend what clickjacking is and the defenses.
Wrap up the course.
Packt has been committed to developer learning since 2004. A lot has changed in software since then - but Packt has remained responsive to these changes, continuing to look forward at the trends and tools defining the way we work and live. And how to put them to work.
With an extensive library of content - more than 4000 books and video courses -Packt's mission is to help developers stay relevant in a rapidly changing world. From new web frameworks and programming languages, to cutting edge data analytics, and DevOps, Packt takes software professionals in every field to what's important to them now.
From skills that will help you to develop and future proof your career to immediate solutions to every day tech challenges, Packt is a go-to resource to make you a better, smarter developer.
Packt Udemy courses continue this tradition, bringing you comprehensive yet concise video courses straight from the experts.