Basic Web Hacking
1,125.00€ +Iva
Dias: 2
Duração: 14 horas
Próxima Data: 05/04/2021 a 06/04/2021
Área: Cibersegurança
Certificação Associada: 156-403 – Check Point Certified PenTesting Expert – Web Hacking (CCPE-W)
Local: Lisboa e Porto
*Curso disponível em Live Training
Descrição
This is an entry-level web Application Security-testing class and is a recommended pre-requisite for our Advanced Web Hacking class. This class familiarises the attendees with the basics of Web and Application hacking. A number of tools and techniques will be taught during the 2 day class. If you would like to step into the world of ethical hacking / pen testing with a focus on web applications, then this is the right class for you.
Destinatários
System Administrators, Web Developers, SOC analysts, Penetration Testers, network engineers, security enthusiasts and anyone who wants to take their skills to the next level.
Programa
Module 1: Information Gathering, Profiling and Cross-Site Scripting
- Understanding HTTP Protocol
- Identifying the Attack Surface
- Username Enumeration
- Information Disclosure
- Issues with SSL/TLS
- Cross-Site Scripting
- Cross-Site Request Forgery
Module 2: Injection, Flaws, Files and Hacks
- SQL Injection
- XXE Attacks
- OS Code Injection
- Local/Remote File Include
- Cryptographic Weakness
- Business Logic Flaws
- Insecure File Uploads
Pré-requisitos
Students should bring their own laptop with Windows Operating System installed (either natively or running in a VM). Further, students must have administrative access to perform tasks such as installing software, disabling antivirus etc. Devices that don’t have an Ethernet connection (e.g. MacBook Air, tablets etc.) are not supported.
Outras datas
07/06/2021 a 08/06/2021