Web Application Hacking

Welcome to the Web Application Hacking course

You are going to see how to bind and execute different types of vulnerabilities at the same time to make a powerful attacks

Memberships can access this course for free.

This course will teach you:

In this course we are going to explain to you how to find and exploit the most common vulnerabilities which exist in the real world Cross Site Scripting XSS,SQL Injection,Local File Inclusion LFI,Remote File Inclusion RFI,Cross site Request Forgery CSRF,Full Path Disclosure FPD,File Upload,Open Redirect, and Authentication bypass

You will Need:

you are not going to need any other thing because this course is provided with online lab, exercises and materials and if anything is missing you can contact us immediately

You can practice at the same time you watch the video using the course lab.

Course Modules:

This course consists of eight modules:

Short Summery

In the first module: you are going to see how to crawel the website then brute forcing for files and directories and find some hidden sensitive directories.

In the second module: you are going to see how the vulnerabilities happen inside php scripts.

In the third module: you are going to see how to find and exploit these XSS forms : Reflected XSS,Stored XSS, and Dom Based XSS

In the fourth module: you are going to see how find and exploit these SQLi forms : Integer SQLi ,String SQLi, and Blind SQLi

In the fifth module: you are going to see how to find and exploit the local file inclusion ,how to use the LFI with wrappers and how to bypass the file restriction.

In the sixth module: you are going to see how to find and exploit the remote file inclusion. How to include and execute the external php code and how to get a metasploit meterpreter shell.

in the seventh module: you are going to see how find and exploit the remote file upload vulnerability different ways:Content type bypassing, Blacklist bypassing,and double extension

in the last module: you are going to see how to find and exploit CSRF, FPD, Open Redirect, and authentication bypass vulnerabilities.

Course syllabus:

  • Website Mapping
    • Website Crewling
    • Directory Brute forcing
  • vulnerabilities understanding
    • Cross Site Scripting XSS
    • SQL Injection
    • Local File Inclusion LFI
    • Remote File Inclusion RFI
    • Cross site Request Forgery CSRF
    • Full Path Disclosure FPD
    • File Upload
    • Open Redirect
    • Authentication bypass
  • Cross site scripting “XSS”
    • Reflected XSS
    • Store XSS
    • DOM XSS
  • SQL Injection “SQLi”
    • Integer SQL Injection
    • String SQL Injection
    • Blind SQL Injection
  • Local File inclusion “LFI”
    • Reading Files
    • Extension Limitation Bypass
    • Reading file using php wrapper
  • Remote File inclusion “RFI”
    • Including and executing external php code
    • Remote file include to meterpreter metasploit shell
  • File Upload
    • Content type bypassing
    • Blacklist bypassing
    • Double extension
  • More Exploitations
    • CSRF
    • FPD
    • Open Redirect
    • Authentication bypass

Course Contents

Exercises Access

Lab Access

Materials Access

Course Certificate

Price: 290$

Purchase