Analyst will discover how to exploit common web vulnerabilities, and how to exfiltrate
sensitive data from target web applications. Analyst will obtain a wide variety of skill
sets and competencies for web app assessments
After completing this course, Analyst will be able to understand:
- Introduction to WEB-200
- Tools
- Cross-Site Scripting Introduction and Discovery
- Cross-Site Scripting Exploitation and Case Study
- Cross-Origin Attacks
- Introduction to SQL
- SQL Injection
- Directory Traversal Attacks
- XML External Entities
- Server-side Template Injection – Discovery and Exploitation
- Command Injection
- Server-side Request Forgery
- Insecure Direct Object Referencing
- Assembling the Pieces: Web Application Assessment Breakdown