Advanced Web Hacking

$1999.99

Buy Now Buy Now

Or preview some of the content.

1667 Minutes of Personalized Content

135 Lectures

Assignments

29 Attachments

Certificate of Completion

Lifetime Access to Course & Updates

Satisfaction Guarantee

Training 5+ people?

From OWASP Top 10 to Dynamic SMT Solvers



5.0 ( 6 ratings) 34 students enrolled

Created by

ZDResearch Training Last updated 9/2018

Description Topics Requirements Audience Curriculum Reviews

Description

This course is tailored for all security researchers, penetration testers and web designers who like to receive in-depth knowledge of web application security from a hacker's perspective.

This is the flagship web application security course provided by ZDResearch Training. In this course you will go through a multitude of web application security topics, all accompanied by demos and hands-on labs. Topics will cover traditional OWASP Top 10 issues as well as several other cutting-edge topics, such as HTML5 attacks, Source Code Auditing and Analysis, CAPTCHA bypass and many more.

Advanced Web Hacking course is the product of 10+ years of web application vulnerability research performed by ZDResearch hunters. Not only it will go through some of the typical methods and techniques used to attack and exploit (as well as defend) web applications, it will teach you the delicate tricks of the trade in the process. For example, you will learn how to fully exploit a system that only allows SQL injection into the LIMIT BY clause, or how to bypass taint based web application firewalls.

Pre-Requirements

This course requires basic programming skills, familiarity with HTTP, HTML, CSS, Javascript, at least one server side scripting language besides Javascript (e.g., PHP), as well as a high-speed Internet.

Goals

The graduates of this course will be able to pwn 70%+ of the web applications on the Internet, and should be fully qualified to find bug bounties in popular web applications such as Facebook and Gmail. They would also be able to perform advanced web application security analysis, testing and auditing.

Certification

Upon successful completion of this course, you will receive a completion certificate from Exdemy. You will also be eligible to take ZDResearch Advanced Web Hacker exam, which is based on this course, and receive the ZDResearch Advanced Web Hacker (ZAWH) certificate.

Topics

SQL Injection
Advanced SQL Injection
Command Injection
Code Injection
XML Injection
XSS
CSRF
HTML5 CORS
HTML5 Web Storage
HTML5 Cross-Window Messaging
HTML5 Access Control
Web Sockets
HTML Video/Audio
Session Management Attacks
Web Service Attacks
Authentication Attacks
Authorization Attacks
Single Sign-On Attacks
CAPTCHA Bypass
HTTP Tampering
WAF Bypass
COTS Vulnerabilities
Redirect Abuse
Denial of Service
Source Code Auditing
Taint Tracking
Taint Inference
Dynamic Code Analysis
Constraint Solving

Requirements

Basic Programming
HTTP
HTML
CSS
Javascript
PHP

Target Audience

Web Application Penetration Testers
Security Researchers
Code Auditors
Bug Bounty Hunters
Web App Auditors

Expand All 161 items27:46:44

Curriculum

1 Advanced SQL Injection 25 Items 07:08:24

1. Lecture 1 Prologue 11:55

ZDResearch-AWH-Prologue.pdf

2. Lecture 2 Introduction 04:15

Section1-Attachments.zip Section1-SQLi.pdf

3. Lecture 3 Finding SQL Injections Automatically 21:40

4. Lecture 4 Finding SQL Injections Manually 17:04

5. Lecture 5 Finding SQL Injection 1800 Page

6. Lecture 6 Protection Strategies 08:35

7. Lecture 7 Patch SQL Injection 1800 Page

chapter01-not-patched-sql.php chapter01-patched-sql.php

8. Lecture 8 DBMS Detection 08:57

9. Lecture 9 Authentication Bypass 08:48

10. Lecture 10 Authentication Bypass 1800 Page

11. Lecture 11 Union-Based Injections 19:36

12. Lecture 12 Dump Table 1800 Page

13. Lecture 13 Reading and Writing Files 06:58

14. Lecture 14 Write Files 1800 Page

15. Lecture 15 Blind Injections 15:39

16. Lecture 16 Double-Blind Injections 08:28

17. Lecture 17 Blind Injection 1800 Page

chapter01-blind-SQLi-injector.py

18. Lecture 18 Error-Based Injections 17:52

19. Lecture 19 System Takeover 12:37

20. Lecture 20 Automated Tools 03:01

21. Lecture 21 Bypassing Blacklists 04:30

22. Lecture 22 Bypass Blacklists 1800 Page

23. Lecture 23 Order By and Limit Injection Preview 05:33

24. Lecture 24 Second Order Injections 12:56

25. Lecture 25 Second Order SQL Injection 1800 Page

2 Other Injection Attacks 19 Items 03:28:55

26. Lecture 1 OS Command Injection 04:38

Section2-Attachments.zip Section2-Injections.pdf

27. Lecture 2 Finding OS Command Injection 05:43

28. Lecture 3 Command Injection 1800 Page

29. Lecture 4 Reverse Shell Using Command Injection 06:26

30. Lecture 5 Bypassing Filename Filters 09:48

31. Lecture 6 Bypassing Filename Filters Demo 06:03

32. Lecture 7 Bypassing Directory Structure Filters 04:18

33. Lecture 8 Bypassing File Type Filters 07:37

34. Lecture 9 Code Injection 18:46

35. Lecture 10 Code Injection 1800 Page

36. Lecture 11 File Inclusion Demo 05:41

37. Lecture 12 Code Injection Demo 02:58

38. Lecture 13 Unsafe Reflection 06:28

39. Lecture 14 Object Injection 15:03

40. Lecture 15 Object Injection Demo Preview 10:30

41. Lecture 16 XXE Injection 04:42

42. Lecture 17 XXE Demo 03:32

43. Lecture 18 XPath Injection 06:42

44. Lecture 19 XPath Injection 1800 Page

3 XSS Attacks 27 Items 04:11:23

45. Lecture 1 Introduction 07:55

Section3-Attachments.zip Section3-XSS.pdf

46. Lecture 2 Reflective XSS 03:23

47. Lecture 3 Reflective XSS Demo 03:53

48. Lecture 4 Reflective XSS 1800 Page

49. Lecture 5 Reflective XSS Real World Example 02:40

50. Lecture 6 Persistent XSS 03:12

51. Lecture 7 Persistent XSS Demo 01:46

52. Lecture 8 Persistent XSS Real World Example 02:29

53. Lecture 9 DOM XSS 02:54

54. Lecture 10 DOM XSS Demo 02:47

55. Lecture 11 DOM XSS Real World Example 03:16

56. Lecture 12 Mutation XSS 02:45

57. Lecture 13 Mutation XSS Demo 06:26

58. Lecture 14 Session Hijacking With XSS 04:49

59. Lecture 15 Session Hijacking with XSS 1800 Page

60. Lecture 16 Session Hijacking With XSS Demo 03:31

61. Lecture 17 Phishing With XSS 05:41

62. Lecture 18 XSS Keyloggers 07:22

63. Lecture 19 Clickjacking With XSS 06:13

64. Lecture 20 Clickjacking With XSS Demo 02:29

65. Lecture 21 Cryptocurrency Mining With XSS 09:46

66. Lecture 22 Remote Control With XSS 05:02

67. Lecture 23 Bypassing XSS Filtering 05:35

68. Lecture 24 XSS And Encodings 1800 Page

69. Lecture 25 Bypassing XSS Filters Preview 1800 Page

chapter03-bypass-xss-filter.php

70. Lecture 26 Preventing XSS 07:29

71. Lecture 27 Prevent XSS 1800 Page

4 CSRF Attacks 10 Items 01:52:05

72. Lecture 1 Introduction 25:33

Section4-Attachments.zip Section4-CSRF.pdf

73. Lecture 2 CSRF Demo 04:14

74. Lecture 3 CSRF Token 08:49

75. Lecture 4 How CSRF Works 05:17

76. Lecture 5 GET And POST CSRF 08:22

77. Lecture 6 CSRF Via Javascript 09:17

78. Lecture 7 Fetch API 1800 Page

chapter04-fetchExploit.html

79. Lecture 8 File Upload CSRF 05:07

80. Lecture 9 Real World CSRF Example Preview 07:48

81. Lecture 10 Real World CSRF Protection 07:38

5 HTML5 Attacks 14 Items 01:38:45

82. Lecture 1 Introduction 00:48

Section5-Attachments.zip Section5-HTML5.pdf

83. Lecture 2 Cross Window Messaging 06:41

84. Lecture 3 Cross Window Messaging Demo 05:12

85. Lecture 4 Cross Origin Resource Sharing 05:29

86. Lecture 5 Cross Origin Resource Sharing Real World Example 05:27

87. Lecture 6 WebSockets 15:30

88. Lecture 7 WebSocket Hijacking Demo 06:08

89. Lecture 8 WebStorage 03:01

90. Lecture 9 WebStorage Demo 05:09

91. Lecture 10 Content Security Policy 04:10

92. Lecture 11 Content Security Policy Demo 04:52

93. Lecture 12 Drag & Drop 02:55

94. Lecture 13 Drag & Drop XSS 03:23

95. Lecture 14 Pastejacking 1800 Page

chapter05-pastejacking.html

6 Session Management Attacks 7 Items 01:09:39

96. Lecture 1 Introduction 03:29

Section6-Attachments.zip Section6-SessionManagement.pdf

97. Lecture 2 Session Hijacking 07:33

98. Lecture 3 Session Hijacking Demo 05:52

99. Lecture 4 Session Hijacking 1800 Page

100. Lecture 5 Session Fixation 13:00

101. Lecture 6 Session Fixation Demo 04:35

102. Lecture 7 Session Fixation Real World Example 05:10

7 Web Service Attacks 23 Items 02:55:59

103. Lecture 1 Introduction 00:27

Section7-Attachments.zip Section7-WebServiceAttacks.pdf

104. Lecture 2 Understanding Web Services 07:44

105. Lecture 3 Attacking REST 02:33

106. Lecture 4 REST API 05:34

107. Lecture 5 Input Validation In REST 02:59

108. Lecture 6 Access Control In REST 03:49

109. Lecture 7 Bypass Access Control 1800 Page

110. Lecture 8 JSON Web Token 05:27

111. Lecture 9 JSON Web Token Demo 09:46

112. Lecture 10 JSON Web Token 1800 Page

113. Lecture 11 Security Headers In REST 04:38

114. Lecture 12 Error Handling In REST 05:25

115. Lecture 13 Content Injection Real World Example 06:25

116. Lecture 14 Attacking SOAP 02:10

117. Lecture 15 Input Validation In SOAP 02:55

118. Lecture 16 WSDL Enumeration 02:35

119. Lecture 17 WSDL Enumeration Demo 05:04

120. Lecture 18 Wordpress Content Injection 1800 Page

chapter07-wp-post-status-changer.py

121. Lecture 19 SAX Injection 01:23

122. Lecture 20 SAX Injection Demo 02:56

123. Lecture 21 SOAP SQL Injection Demo 03:18

124. Lecture 22 Server Side Request Forgery 06:11

125. Lecture 23 SSRF Real World Example 04:40

8 Authentication & Authorization Attacks 18 Items 02:50:47

126. Lecture 1 Introduction 13:19

Section8-Attachments.zip Section8-Auth.pdf

127. Lecture 2 Sniffing Authentication Credentials 04:53

128. Lecture 3 Breaking Authorization 04:47

129. Lecture 4 Breaking Authorization Demo 04:11

130. Lecture 5 HTTP Basic Authentication 1800 Page

chapter08-sample-multithread-brute-forcer.py

131. Lecture 6 HTTP Verb Tampering Demo 05:30

132. Lecture 7 Brute Force Attacks 11:17

133. Lecture 8 Brute Force Attacks Demo 08:26

134. Lecture 9 Brute Force Attacks Demo 2 12:58

135. Lecture 10 Bypassing CAPTCHAs 07:17

136. Lecture 11 Bypassing CAPTCHAs Demo 06:19

137. Lecture 12 Bypassing CAPTCHAs Real World Example 04:48

138. Lecture 13 SentryMBA 05:32

139. Lecture 14 SentryMBA Demo 07:39

140. Lecture 15 SentryMBA 1800 Page

wp-captcha-booster.zip

141. Lecture 16 Finding Other Websites On A Server 04:39

142. Lecture 17 Bypassing Authorization With Symlinks 06:29

143. Lecture 18 Dirty Cow Local Root Exploit 02:43

9 Other Attacks 18 Items 02:30:47

144. Lecture 1 Solving CAPTCHAs With Human APIs 02:19

Section9-Attachments.zip Section9-OtherAttacks.pdf

145. Lecture 2 Solving CAPTCHAs With Human APIs Demo 08:59

146. Lecture 3 Web Application Firewalls 03:28

147. Lecture 4 Mod_Security Demo 10:53

148. Lecture 5 Mod_Security Demo 2 05:43

149. Lecture 6 Third Party Components 03:57

150. Lecture 7 Detecting Vulnerable Third Party Components 07:45

151. Lecture 8 Open Redirect 02:57

152. Lecture 9 Open Redirect Real World Example 02:52

153. Lecture 10 Denial of Service 11:50

154. Lecture 11 Denial of Service Demo 04:43

155. Lecture 12 Slowloris Protection 1800 Page

chapter09-anti_slowloris.sh

156. Lecture 13 Defending Against DOS 08:41

157. Lecture 14 HTTP Response Splitting 02:38

158. Lecture 15 HTTP Response Splitting Demo 04:43

159. Lecture 16 HTTP Verb Tampering 02:50

160. Lecture 17 HTTP Verb Tampering Demo 06:29

161. Lecture 18 Cache Poisoning 1800 Page

Reviews

2018-08-16 21:44:43

Omid Mohammadi



Hi! Thanks for your Course. I just started it now, and watched first two videos.Every thing sounds nice.I'm installing docker to get ready for more serious parts :))

2018-09-25 15:53:51

Asif Rahman



I was looking for a good web hacking course for a long time! I give this course 5 stars, because the speaker does not hold any knowledge back and gives many practical exercises.

2018-09-01 23:25:00

Ramon de Calle



Having enrolled in three other web hacking courses, I'd rank this one the best so far. The details of hands-on demos, as well as the instrucftor explanations after each demo coupled with online labs help get through any area that I'm a little rusty at. I have not yet finished this long course, but I've got my money's worth so far.

2018-08-05 12:07:04

Rahul Singh



I have been waiting for this course since July 2016 after taking other ZD Research courses. It finally came out now! The course was well worth waiting for though, very detailed and informative I wish ZD Research made more courses such as this one.

2019-08-24 11:12:55

SOHRAB PARAUDZINS



Thank's From ZDresearch for their support and this is a great and functional package. Sohrab ////keramat