WAHS | Web Application Hacking and Security
 
Web Application Hacking and Security has challenges derived from the iLab environments of EC Council – from Certified Ethical Hacker (C|EH) to the Certified Penetration Testing Professional (C|PENT); from Certified Application Security Engineer (C|ASE) .Net to Java. But Web Application Hacking and Security goes beyond this to more difficult scenarios as you advance through each problem.
Web Application Hacking and Security is like Capture-The-Flag (CTF) competitions meant to test your hacking skills. But you can keep on trying until you achieve the goal. Test your skills and work alone to solve complex problems or follow the instructor as he does walkthroughs to help you learn Web Application Hacking and Security.
 
What will you learn?
You will learn about application vulnerabilities and web application hacking. Even though this will prove useful for other CTF contests, and in cracking VVMs, it will be even more useful to your career as you learn to defend your applications and progress to Web Application Hacking and Security.
Advanced Web Application Penetration Testing
Advanced SQL Injection (SQLi)
Reflected, Stored and DOM-based Cross Site Scripting (XSS)
Cross Site Request Forgery (CSRF) – GET and POST Methods
Server-Side Request Forgery (SSRF)
Security Misconfigurations
Directory Browsing/Bruteforcing
CMS Vulnerability Scanning
Network Scanning
Auth Bypass
Web App Enumeration
Dictionary Attack
Insecure Direct Object Reference Prevention (IDOR)
Broken Access Control
Local File Inclusion (LFI)
Remote File Inclusion (RFI)
Arbitrary File Download
Arbitrary File Upload
Using Components with Known Vulnerabilities
Command Injection
Remote Code Execution
File Tampering
Privilege Escalation
Log Poisoning
Weak SSL Ciphers
Cookie Modification
Source Code Analysis
HTTP Header modification
Session Fixation
Clickjacking
 
Who should attend?
If you are tasked with implementing, managing, or protecting web applications, then this course is for you. If you are a cyber or tech professional who is interested in learning or recommending mitigation methods to a myriad of web security issues and want a pure hands-on program, then this is the course you have been waiting for.
Penetration Tester
Ethical Hacker
Web Application Penetration Tester
Security Engineer/Auditor
Red Team Engineer
Information Security Engineer
Risk/Vulnerability Analyst
Vulnerability Manager
Incident Responder
 
Descargue el temario para conocer el detalle completo de los contenidos.
 
Debido a las constantes actualizaciones de los contenidos de los cursos por parte del fabricante, el contenido de este temario puede variar con respecto al publicado en el sitio oficial, sin embargo, Netec siempre entregará la versión actualizada de éste.