Web application hacking – OWASP Top 10 (online)

Online hacking training for one person.

Web application hacking is two-day training focused on common web application vulnerabilities from penetration tester and developer perspective.

The training reflects structure of OWASP Top 10 report. We are going to identify each vulnerability, exploit it and discuss a security impact.

Student gets hands-on experience with testing tools Burp Suite, DirBuster, SQLmap and netcat. Student also obtains a study material in electronic form (PDF) in order to refresh skills or practice later in VPN – Extended labs.

Prerequisites

  • own laptop, see technical requirements
  • understanding of TCP/IP protocols, especially HTTP
  • SQL language understanding
  • OS Linux user knowledge

Course detail

  • A1: Injection (SQL & OS command injection)
  • A2: Broken Authentication and Session Management
  • A3: Cross-Site Scripting (XSS)
  • A4: Insecure Direct Object References
  • A5: Security Misconfiguration
  • A6: Sensitive Data Exposure
  • A7: Missing Function Level Access Control
  • A8: Cross-Site Request Forgery (CSRF)
  • A9: Using Known Vulnerable Components
  • A10: Unvalidated Redirects and Forwards
  • Unrestricted upload vulnerability
  • Local and remote file inclusion vulnerability
  • Log on bruteforce attack

This course is intended for ...

  • Security manager

  • Penetration tester

  • Security monitoring specialist

  • Developer

from 12. 03. 2020
to 13. 03. 2020
(09:00-17:00 hod)

online - individuální termíny na dotaz
(Show on map)

2 days

13 360 CZK
incl. VAT

Order course
Term Place Course duration Price

from 12. 03. 2020
to 13. 03. 2020
(09:00-17:00 hod)

online - individuální termíny na dotaz
(Show on map)

2 days

13 360 CZK
incl. VAT

Order course

(Čeština) Radomír Zdarsa

Kali linux and TCP/IP protocols

Sorry, this entry is only available in Czech.

(Čeština) Petr Stránský

Host discovery and port scanning (online)

Sorry, this entry is only available in Czech.

Kamil Krbec

Web application hacking – OWASP Top 10

Realy nice introduction into web application security, practical usage of tools.

Hynek Hladík

Web application hacking – OWASP Top 10

I appreciate very much live demonstrations of OWASP TOP 10 together with hacking tools which help to identify web app weaknesses.

Web application hacking – OWASP Top 10 (online)

successfully added to cart.

cart
×

Blog

Contacts

10 kroků pro bezpečný web

Ať už si stavíte malý blog, eshop nebo dáváte agentuře vyrobit „mikrosajtu“, budete řešit zabezpečení svého webu před útoky z internetu. V následujících odstavcích se dozvíte,…

Read more

OSCP – Cesta k certifikaci

V tomto příspěvku se bych se rád podělil o tipy, jak se připravit na OSCP certifikaci. Na úvod řeknu, že jsem začínal jako vývojář a…

Read more

(Čeština) Kali linux na Raspberry Pi

Sorry, this entry is only available in Czech.

Kontakty

+420 739 639 132

Petr Juhaňák
V Poli 547
517 71 České Meziříčí
Czech Republic

IČO 01259041