Description
This course is for Absolute Beginners to Expert levels and Freshers out of college who want to start career with Web Security.
Web App Penetration Testing & Bug Bounty Hunting
1 – How To Setup A Virtual Penetration Testing Lab
2 – Listening for HTTP traffic, using Burp
3 – Getting to Know the Burp Suite of Tools, Know the Burp Suite
4 – Assessing Authentication Schemes
5 – Assessing Authorization Checks
6 – Assessing Session Management Mechanisms
7 – Assessing Business Logic
This course is for Absolute Beginners to Expert levels. A variety of applications with known Web Security vulnerabilities and Web App Penetration Testing.
Testing for browser cache weaknesses – Assessing Authentication Schemes
Testing for account enumeration and guessable accounts -Assessing Authentication Schemes.
Testing for weak lock-out mechanisms -Assessing Authentication Schemes
Account provisioning process via REST API – Assessing Authentication Schemes
Testing for directory traversal – Directory traversal
Assessing Authorization Checks – Local File Include
Assessing Authorization Checks – Remote File Inclusion
Assessing Authorization Checks – Privilege escalation
Assessing Authorization Checks – Insecure Direct Object Reference
Testing session token strength using Sequencer – Assessing Session Management Mechanisms
Testing for cookie attributes – Assessing Session Management Mechanisms
Testing for exposed session variables – Assessing Session Management Mechanisms
Testing for Cross-Site Request Forgery – Assessing Session Management Mechanisms
Above mentioned points will cover in this course which is help you to find Web Security Vulnerabilities and Web App Penetration testing.