Kali Linux Web App Testing

by Jack

Publisher: Packt Publishing

Release Date: May 2015

ISBN: 9781784399122

View table of contents

Start watching

Video Description

Leverage the true power of Kali Linux with the help of its tools and take your app security to the next level

About This Video

Grasp how attacks such as SQL and XSS injections function and ward them off

Guard your applications against threats such as File inclusion, Bruteforcing, and Remote command executions by understanding how they work

Scan your application for vulnerabilities with dynamic tools such as w3af and OWASP Zap to resolve them on time

In Detail

With an ever-changing online environment, security is a constantly growing concern. It’s hard for web developers to keep up with new and emerging techniques that attackers may use to hack into a site. In such a scenario, Kali Linux emerges as a powerful package to penetration test your website or application.

Kali Linux Web App Testing will help you prevent different cyber attacks from basic vulnerabilities to ones less spoken of. Firstly, you will be introduced to injection techniques such as SQL injection along with SQLMap. After that, you’ll learn what XSS injection is and how to use XSSER against it. Then you’ll walk through local and remote file inclusions and ways to counteract them. You’ll also learn other cyber invasions such as Remote Command Execution and Cross Site Request Forgery. Furthermore, you’ll see what Open Redirects and Open Proxies are and how to tackle them. Finally, you’ll learn the concept of Clickjacking and how to avoid it. Towards the end of this course, you’ll not only be familiar with various cyber attacks and vulnerabilities, but also know different approaches to deal with them.

The course follows a strict hands-on approach; combined with practical examples, it will help you to understand, how these attacks work and how to combat them effectively.

Chapter 1 : Understanding the Basics
1. Course Overview 00:04:15
2. Taking the First Steps 00:08:50
3. Using Kali Linux 00:05:21
Chapter 2 : Security Vulnerabilities – A Website's Worst Case Scenario
1. Basic SQL Injection 00:07:55
2. sqlmap Part 1 00:07:57
3. sqlmap Part 2 00:09:10
4. Types of Cross-site Scripting XSS 00:04:22
5. Working with XSSER 00:06:50
6. Filtering and Validation 00:07:51
Chapter 3 : Securing Your Files – No File Is Safe
1. Local and Remote File Inclusion 00:06:39
2. Fimap 00:04:17
3. Directory Traversal 00:04:10
Chpater 4 : Avoiding Forced Attacks
1. Hash Brute-forcing 00:04:26
2. Hashcat 00:09:30
3. Form Brute-forcing 00:07:30
4. Hydra 00:07:24
Chapter 5 : New Tools in the Arsenal
1. Introduction to Vulnerability Scanners 00:08:24
2. Open Redirects and Open Proxies 00:06:07
3. Remote Command Execution RCE 00:06:24
4. Information Disclosure 00:05:26
5. Tampering Data in Packets 00:04:42
Chapter 6 : Silent Manipulation with CSRF
1. What Is CSRF? 00:04:10
2. CSRF Tester Tool 00:08:34
3. Tokens and the Same-origin Policy 00:07:11
Chapter 7 : Extra Measures for the Shop
1. OWASP ZAP 00:06:32
2. Two-factor Authentication 00:03:57
3. Weak Passwords and Phishing 00:05:47
4. Clickjacking 00:06:27
5. Wrapping Up 00:04:43

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Kali Linux Web App Testing

Video Description

Table of Contents

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Kali Linux Web App Testing

Video Description

Table of Contents