Course Content
-
Course Outline
- Introduction To Web application
- Basics
- HTTP Protocol
- Web servers and clients
- Server-side and Client-side security controls
- Types of web application security testing
- Reconnaissance
- Burpsuite,OWASP ZAP
- Injections
- Cross-site Scripting
- Cross-site Request Forgery
- Authentication Testing
- Authorization Testing
- Session Management
- Security Misconfiguration
- Missing functional level access controls
- SSL & Configuration testing
- Session Management testing
- Brute force web applications
- Parameter Manipulation
- Other Attacks
- Web application Penetration Testing Tools
- Samurai WTF
- Firefox security Add-ons
- VAPT Methodologies
- Documentation & Reporting
-
Prev
Basics