Advanced Web Hacking – NotSoSecure

2,100.00

This is our 5-day Advanced-level web application security testing course.

Much like our popular Advanced Infrastructure Hacking class, this class talks about a wealth of hacking techniques to compromise web applications, APIs, cloud components and other associated end-points. This class focuses on specific areas of appsec and on advanced vulnerability identification and exploitation techniques (especially server side flaws). The class allows attendees to practice some neat, new and ridiculous hacks which affected real life products and have found a mention in real bug-bounty programs. The vulnerabilities selected for the class either typically go undetected by modern scanners or the exploitation techniques are not so well known.

 

HOMEPAGE – https://notsosecure.com/security-training/advanced-web-hacking

 

Original Price: $4,398
Our Price: $25

Description

Size: 9.43 GB

You will be able to:

  • Effectively exfiltrate data using Out of Band Techniques for certain vulnerabilities
  • Pen Test encrypted parameters to find vulnerabilities
  • Learn how to bypass SSO functionalities
  • Find SQL injection vulnerabilities not detected by Automated tools
  • Break weak crypto implementations
  • Learn ways to bypass password reset functionalities

Who Should Take This Class?

  • Web developers
  • SOC analysts
  • Intermediate level penetration testers
  • DevOps engineers, network engineers
  • Security architects
  • Security enthusiasts
  • Anyone who wants to take their skills to the next level

Related products

  • Security , Shop

    Exploit Development Student

    If you are looking for the most practical way into the exploit development and software security world look no further. The Exploit Development Student Learning Path provides not only the fundamentals of Windows and Linux exploit development but also covers advanced Windows and Linux exploit development techniques, as well as anti-exploit mechanism bypasses.

    Course at a glance

    • Based on techniques professional …

    570.00

  • Security , Shop

    SANS SEC564: Red Team Exercises and Adversary Emulation

    In SEC564, you will learn how to plan and execute an end-to-end adversary emulation, including how to plan and build a red team program, leverage threat intelligence to map against adversary tactic, techniques, and procedures (TTPs), emulate those TTPs, report and analyze the results of red team exercises, and ultimately improve the overall security posture of the organization.

    You …

    1,600.00

  • Security , Shop

    eLearnSecurity – Penetration Testing Professional v5

    The eCPPT designation stands for eLearnSecurity Certified Professional Penetration Tester. eCPPT is a 100% practical and highly respected Ethical Hacking and Penetration Testing Professional certification counting certified professional in all the five continents.

    By obtaining the eCPPT, your skills in the following areas will be assessed and certified:

    • Penetration testing processes and methodologies, against Windows …

    585.00

  • Security , Shop

    eLearnSecurity – Practical Web Defense

    Course at a glance

    • Close the gap between Web application attack and defense
    • Mitigation advices for multiple platforms and languages
    • The most comprehensive and practical coverage of the OWASP Testing Guide
    • Comprehensively aligned to OWASP methodologies, tools and tests
    • Covers and goes beyond OWASP TOP 10
    • Detailed techniques and methodology to simplify defense of web applications
    • No boring theory: practice oriented curriculum

    575.00