Hacking Web Applications

Reconnaissance (Passive & Active)

Subdomain Enumeration

Directory and File Brute-Forcing

Fuzzing Parameters

Technology Stack Identification

Business Logic Mapping

Lab: Recon + Enumeration

Identity & Authentication

Credential Attacks and Rate-Limiting Bypass

MFA and Other Authentication Mechanisms

Session Hijacking, Fixation, and Cookie Poisoning

Lab: Auth Attack Scenarios

Session Hijacking, Fixation, and Cookie Poisoning

Access Control Fundamentals (Authentication vs Authorization)

Broken Access Control (BAC) Concepts and Patterns

Insecure Direct Object Reference (IDOR)

Lab: IDOR + Privilege Boundary Testing (horizontal + vertical access control checks)

Client vs Server Execution

Cross-Site Scripting (XSS) Fundamentals

XSS Types (Reflected, Stored, DOM-Based)

HTML Injection and UI Deception

Cross-Site Request Forgery (CSRF)

Open Redirects and Trust Abuse

Lab: XSS + CSRF Testing in Burp (confirm execution + validate impact + apply defenses checks)

SQL Injection

OS Command Injection

Server-Side Request Forgery (SSRF)

Lab: Backend Exploitation Chain (SQLi/Command Injection/SSRF based on app endpoints)

Content Management System Introduction

Attacking CMS

Lab: CMS Attack Walkthrough