Mastodon
Mastodon
Autoplay
Autocomplete
Previous Lesson
Complete and Continue
Practical Web Application Security and Testing
0: Prologue
0-1: Welcome
0-2: About the Instructor
0-3: Course Structure
1: Setup
1-1: Lab Setup Overview
1-2: Lab Setup - Hyper-V
1-3: Lab Setup - VirtualBox
1-4: Lab Setup - Kali Linux
1-5: Lab Setup - Docker
2: Web Application Concepts
2-1: Servers and Clients
2-2: Lab - Nginx and Server Logs
2-3: HTTP
2-4: The Web Trinity
2-5: HTML
2-6: CSS
2-7: JavaScript
2-8: Lab - Alert Button
2-9: ZAP Intro
2-10: Lab - ZAP Enumeration
3: Server-Side Web Apps
3-1: PHP
3-2: Lab - PHP with Docker
3-3: Server Side Security Considerations
3-4: Lab - Wordpress
3-5: Lab - DVWA
4: The OWASP Top 10
4-1: OWASP Overview
4-2: Broken Access Control
4-3: Cryptographic Failures
4-4: Injection - XSS
4-5: Injection - SQLI
4-6: Injection - Command Injection
4-7: Insecure Design
4-8: Security Misconfiguration
4-9: Vulnerable and Outdated Components
4-10: Identification and Authentication Failures
4-11: Software and Data Integrity Failures
4-12: Security Logging and Monitoring Failures
4-13: Server-Side Request Forgery
4-14: Extra Practice
5: Client-Side Web Apps
5-1: Client-Side Web App Intro
5-2: Lab - Juice Shop
5-3: Frontend Considerations
6: Web App Pentesting Methodology
6-1: Preparation
6-2: Scoping
6-3: Enumeration
6-4: Manual Testing
6-5: Automated Attacks
7: Juice Shop Pentest
7-1: Automatic Enumeration
7-2: Manual Enumeration
7-3: Discoveries
7-4: Login/Authentication
7-5: Purchasing
7-6: Customer Support
7-7: Additional API Testing
7-8: Legacy Code
8: Reporting
8-1: Report Structure
8-2: Writing Tips
9: APIs
9-1: APIs in Web Apps
9-2: Lab - APIs Intro
9-3: API Considerations
9-4: Insomnia Setup and Intro
9-5: Lab - VAPI Setup
9-6: Lab - VAPI 1
9-7: Lab - VAPI 2
9-8: Lab - VAPI 4
9-9: Lab - VAPI 5
9-10: Lab - VAPI 6
9-11: Lab - VAPI 7
9-12: Lab - VAPI 8
9-13: Lab - VAPI 9
9-14: Lab - VAPI 10
10: Final Thoughts
10-1: Exhibition of Mastery
10-2: Next Steps
10-3: Feedback Form
2-4: The Web Trinity
Lesson content locked
If you're already enrolled,
you'll need to login
.
Enroll in Course to Unlock