Web App Penetration Testing - A to Z (Bug Bounty)

Rating 4.38 out of 5 (4 ratings in Udemy)

What you'll learn

How to setup Web App Penetration Testing - Home LAB
Burp Suite
Assessing Authentication Schemes
Assessing Authorization Checks
Assessing Session Management Mechanisms
Assessing Business Logic
Testing for browser cache weaknesses
Testing for account enumeration and guessable accounts
Testing for weak lock-out mechanisms
Account provisioning process via REST API
Testing for directory traversal - Directory traversal …

Rating 4.38 out of 5 (4 ratings in Udemy)

What you'll learn

How to setup Web App Penetration Testing - Home LAB
Burp Suite
Assessing Authentication Schemes
Assessing Authorization Checks
Assessing Session Management Mechanisms
Assessing Business Logic
Testing for browser cache weaknesses
Testing for account enumeration and guessable accounts
Testing for weak lock-out mechanisms
Account provisioning process via REST API
Testing for directory traversal - Directory traversal
Assessing Authorization Checks - Local File Include
Assessing Authorization Checks - Remote File Inclusion
Assessing Authorization Checks - Privilege escalation
Assessing Authorization Checks - Insecure Direct Object Reference
Testing session token strength using Sequencer
Testing for cookie attributes
Testing for exposed session variables
Testing for Cross-Site Request Forgery

Description

This course is for Absolute Beginners to Expert levels and Freshers out of College who want to start career with Web Security.

Web App Penetration Testing - Home LAB.

1 - How To Setup A Virtual Penetration Testing Lab

2 - Listening for HTTP traffic, using Burp

3 - Getting to Know the Burp Suite of Tools, Know the Burp Suite

4 - Assessing Authentication Schemes

5 - Assessing Authorization Checks

6 - Assessing Session Management Mechanisms

7 - Assessing Business Logic

This course is for Absolute Beginners to Expert levels. A variety of applications with known Web Security vulnerabilities and Web App Penetration Testing.

Testing for browser cache weaknesses - Assessing Authentication Schemes

Testing for account enumeration and guessable accounts -Assessing Authentication Schemes.

Testing for weak lock-out mechanisms -Assessing Authentication Schemes

Account provisioning process via REST API - Assessing Authentication Schemes

Testing for directory traversal - Directory traversal

Assessing Authorization Checks - Local File Include

Assessing Authorization Checks - Remote File Inclusion

Assessing Authorization Checks - Privilege escalation

Assessing Authorization Checks - Insecure Direct Object Reference

Testing session token strength using Sequencer - Assessing Session Management Mechanisms

Testing for cookie attributes - Assessing Session Management Mechanisms

Testing for exposed session variables - Assessing Session Management Mechanisms

Testing for Cross-Site Request Forgery - Assessing Session Management Mechanisms

Above mentioned points will cover in this course which is help you to find Web Security Vulnerabilities and Web App Penetration testing.

Duration 2 Hours 58 Minutes

Paid

Self paced

All Levels

English (US)

119

Rating 4.38 out of 5 (4 ratings in Udemy)

Go to the Course
We have partnered with providers to bring you collection of courses, When you buy through links on our site, we may earn an affiliate commission from provider.