Description
Are you a beginner and looking to break into the AppSec field? Don't know where to start your Application Security journey? Curious to know what it takes to get started with Bug Bounties? Then, this course is a great start for you. This practical web application penetration testing course is suitable for beginners and it covers a wide range of common web application attacks. Once you get the foundations right, you can build your skills on your own from there. This entry level web security course also provides a custom web application developed in Java specifically for this course. In addition to it, the course also covers some challenges in a publicly available vulnerable web application. The course provides necessary background details to the concepts wherever necessary. Following are some of the topics covered in this course: Web Application ArchitectureHTTP Requests and ResponsesSQL Injection - Authentication BypassManually Exploiting Error Based SQL InjectionSQLMap for exploiting SQL InjectionCross Site Scripting - Reflected, Stored and DOM BasedCross Site Request ForgeryBroken CryptographyAccess Control IssuesArbitrary File UploadsXPATH InjectionXML External Entity (XXE) InjectionJava DeserializationCommand Execution via Security MisconfigurationsCommand Execution via outdate softwareYou will learn the following for most vulnerabilities discussed in the course. Identifying a vulnerabilityHow to exploit an identified vulnerabilityHow to prevent the discussed vulnerabilityNOTE: This is course is being updated and new content will be uploaded until all the advertised modules are covered.
