Video description
This course shows you how to secure a web application with ZAP, an award winning open source security application actively maintained worldwide by hundreds of volunteers.
First, you'll install an up-to-date version of the Java runtime environment and the ZAP application. Then, you'll learn how to do a web application vulnerability scan, simulate an attack, and install an add-on. Learners must be super users on computers running recent copies of the Windows, macOS, Ubuntu, or Docker platforms.
- Learn how to find vulnerabilities in web applications
- Understand how to simulate malicious attacks
- Explore techniques that find vulnerabilities in the configuration of web services on a server
- Discover methods that can verify the security of your code
Scott C. MacCallum is a technology manager, freelance technology author, and software freedom activist, who has been working with the BSD and GNU/Linux operating systems since 1999. His current areas of interest are security, reverse engineering, and developing free software.
Table of Contents
Introduction
Welcome To Securing Web Applications With ZAP
00:00:50
About Scott C. MacCallum
00:00:46
Installation
Overview Of ZAP installation
00:00:47
Installing ZAP On Windows
00:01:00
Installing ZAP On Ubuntu
00:01:15
Installing ZAP On MacOS
00:01:04
Installing ZAP On Docker
00:01:13
Passive Scanning
Overview Of Passive Scanning
00:01:57
Performing A Quick Spider Scan
00:00:46
Performing An AJAX Spider Scan
00:00:38
Performing A Spider And Manual Scan Together
00:01:21
Active Scanning
Overview Of Active Scanning
00:00:59
Performing A Simulated Attack
00:00:31
Making Use Of Add-Ons
Overview Of Add-Ons
00:00:52
Performing A Forced Browse Attack
00:01:14
Conclusion
Wrap Up
00:00:22