In this training class, you'll attack a custom site with the common and even advanced vulnerabilities. This isn't your average web app course! We built the labs around what we are seeing as penetration testers and bug bounty hunters.

Whose This Class For:

• Those that might have had a little experience or those that want to get into Web Penetration Testing.
• Those that have played with Web Proxies manipulating traffic and want more
• Those that want to get into Bug Bounties and make $$$

Topics:

• One Day Course on Real World Web Penetration Test and Bug Hunting
• Recon/Spidering
• Attacking XSS, Polygots, and Blind XSS
• Cross-Site Request Forgery
• Integer Underflows
• Insecure Direct Object Reference
• Local File Inclusions and Server Side Request Forgery
• Manual SQL Injections
• Remote Code Execute with Images
• Advanced Attacks: XML eXternal Entities (XXE)
• Advanced Attacks: Deserialization Attacks
• Cloud Issues