Back

Hacking Web Applications

Whether you’re a curious learner, aspiring ethical hacker, or someone who wants to secure their own website, this course provides an easy-to-follow and comprehensive pathway to mastering the basics of website hacking.

Tarek

Lead Trainer

5 hr

$ 147

Description

Course Curriculum

Reconnaissance, Enumeration, and Analysis

7 lessons

1. Reconnaissance (Passive & Active)

00:00

2. Subdomain Enumeration

00:00

3. Directory and File Brute-Forcing

00:00

4. Fuzzing Parameters

00:00

5. Technology Stack Identification

00:00

6. Business Logic Mapping

00:00

7. Lab: Recon + Enumeration

Cracking Identity

6 lessons

8. Identity & Authentication

00:00

9. Credential Attacks and Rate-Limiting Bypass

00:00

10. MFA and Other Authentication Mechanisms

00:00

11. Session Hijacking, Fixation, and Cookie Poisoning

00:00

12. Lab: Auth Attack Scenarios

13. Session Hijacking, Fixation, and Cookie Poisoning

00:00

Access Control & Authorization Failures

4 lessons

14. Access Control Fundamentals (Authentication vs Authorization)

00:00

15. Broken Access Control (BAC) Concepts and Patterns

00:00

16. Insecure Direct Object Reference (IDOR)

00:00

17. Lab: IDOR + Privilege Boundary Testing (horizontal + vertical access control checks)

Client-Side Attacks and Browser Trust

7 lessons

18. Client vs Server Execution

00:00

19. Cross-Site Scripting (XSS) Fundamentals

00:00

20. XSS Types (Reflected, Stored, DOM-Based)

00:00

21. HTML Injection and UI Deception

00:00

22. Cross-Site Request Forgery (CSRF)

00:00

23. Open Redirects and Trust Abuse

00:00

24. Lab: XSS + CSRF Testing in Burp (confirm execution + validate impact + apply defenses checks)

Exploiting the Back-End

4 lessons

25. SQL Injection

00:00

26. OS Command Injection

00:00

27. Server-Side Request Forgery (SSRF)

00:00

28. Lab: Backend Exploitation Chain (SQLi/Command Injection/SSRF based on app endpoints)

CMS Pentesting and Attacking

3 lessons

29. Content Management System Introduction

00:00

30. Attacking CMS

00:00

31. Lab: CMS Attack Walkthrough

Where this course lies in the Roadmap

Beginner Roadmap
8 courses
Hacking For Beginners cover image
Hacking For Beginners

Tarek

4 hr 59 min
Hacking With Kali Linux cover image
Hacking With Kali Linux

Tarek

6 hr 51 min
Blue Team Basics cover image
Blue Team Basics

Tarek

5 hr
Intro To Cyber Security cover image
Intro To Cyber Security

Tarek

5 hr
SOC Analyst Fundamentals cover image
SOC Analyst Fundamentals

Tarek

5 hr
Web Security Fundamentals cover image
Web Security Fundamentals

Tarek

5 hr
Hacking Web Applications cover image
Hacking Web Applications

Tarek

5 hr
Wi-Fi Hacking & Cracking cover image
Wi-Fi Hacking & Cracking

Tarek

5 hr
Discover all roadmaps