Web application hacking – OWASP Top 10 (online)

Online hacking training for one person.

Web application hacking is two-day training focused on common web application vulnerabilities from penetration tester and developer perspective.

The training reflects structure of OWASP Top 10 report. We are going to identify each vulnerability, exploit it and discuss a security impact.

Student gets hands-on experience with testing tools Burp Suite, DirBuster, SQLmap and netcat. Student also obtains a study material in electronic form (PDF) in order to refresh skills or practice later in VPN – Extended labs.

Prerequisites

  • own laptop, see technical requirements
  • understanding of TCP/IP protocols, especially HTTP
  • SQL language understanding
  • OS Linux user knowledge

Course detail

  • A1: Injection (SQL & OS command injection)
  • A2: Broken Authentication and Session Management
  • A3: Cross-Site Scripting (XSS)
  • A4: Insecure Direct Object References
  • A5: Security Misconfiguration
  • A6: Sensitive Data Exposure
  • A7: Missing Function Level Access Control
  • A8: Cross-Site Request Forgery (CSRF)
  • A9: Using Known Vulnerable Components
  • A10: Unvalidated Redirects and Forwards
  • Unrestricted upload vulnerability
  • Local and remote file inclusion vulnerability
  • Log on bruteforce attack

This course is intended for ...

  • Security manager

  • Penetration tester

  • Security monitoring specialist

  • Developer

from 14. 11. 2019
to 15. 11. 2019
(09:00-17:00 hod)

online
(Show on map)

2 days

13 360 CZK
incl. VAT

Order course
Term Place Course duration Price

from 14. 11. 2019
to 15. 11. 2019
(09:00-17:00 hod)

online
(Show on map)

2 days

13 360 CZK
incl. VAT

Order course

Kamil Krbec

Web application hacking – OWASP Top 10

Realy nice introduction into web application security, practical usage of tools.

Hynek Hladík

Web application hacking – OWASP Top 10

I appreciate very much live demonstrations of OWASP TOP 10 together with hacking tools which help to identify web app weaknesses.

Jan Černý

Web application hacking – OWASP Top 10

Practical examples you can try immediately mixed up with theory. I recommend the training.

Web application hacking – OWASP Top 10 (online)

successfully added to cart.

cart
×

Blog

Contacts

10 kroků pro bezpečný web

Ať už si stavíte malý blog, eshop nebo dáváte agentuře vyrobit „mikrosajtu“, budete řešit zabezpečení svého webu před útoky z internetu. V následujících odstavcích se dozvíte,…

Read more

OSCP – Cesta k certifikaci

V tomto příspěvku se bych se rád podělil o tipy, jak se připravit na OSCP certifikaci. Na úvod řeknu, že jsem začínal jako vývojář a…

Read more

WABANK – OWASP Top 10 testing

WABANK is deliberately vulnerable web application for security testing according OWASP Top 10 report. Application is free for non commercial usage only.      …

Read more

Kontakty

+420 739 639 132

Petr Juhaňák
V Poli 547
517 71 České Meziříčí
Czech Republic

IČO 01259041