Video description
Leverage the true power of Kali Linux with the help of its tools and take your app security to the next level
About This Video
Grasp how attacks such as SQL and XSS injections function and ward them off
Guard your applications against threats such as File inclusion, Bruteforcing, and Remote command executions by understanding how they work
Scan your application for vulnerabilities with dynamic tools such as w3af and OWASP Zap to resolve them on time
In Detail
With an ever-changing online environment, security is a constantly growing concern. It’s hard for web developers to keep up with new and emerging techniques that attackers may use to hack into a site. In such a scenario, Kali Linux emerges as a powerful package to penetration test your website or application.
Kali Linux Web App Testing will help you prevent different cyber attacks from basic vulnerabilities to ones less spoken of. Firstly, you will be introduced to injection techniques such as SQL injection along with SQLMap. After that, you’ll learn what XSS injection is and how to use XSSER against it. Then you’ll walk through local and remote file inclusions and ways to counteract them. You’ll also learn other cyber invasions such as Remote Command Execution and Cross Site Request Forgery. Furthermore, you’ll see what Open Redirects and Open Proxies are and how to tackle them. Finally, you’ll learn the concept of Clickjacking and how to avoid it. Towards the end of this course, you’ll not only be familiar with various cyber attacks and vulnerabilities, but also know different approaches to deal with them.
The course follows a strict hands-on approach; combined with practical examples, it will help you to understand, how these attacks work and how to combat them effectively.
Table of contents
-
Chapter 1 : Understanding the Basics
- Course Overview 00:04:15
- Taking the First Steps 00:08:50
- Using Kali Linux 00:05:21
-
Chapter 2 : Security Vulnerabilities – A Website's Worst Case Scenario
- Basic SQL Injection 00:07:55
- sqlmap Part 1 00:07:57
- sqlmap Part 2 00:09:10
- Types of Cross-site Scripting XSS 00:04:22
- Working with XSSER 00:06:50
- Filtering and Validation 00:07:51
-
Chapter 3 : Securing Your Files – No File Is Safe
- Local and Remote File Inclusion 00:06:39
- Fimap 00:04:17
- Directory Traversal 00:04:10
-
Chpater 4 : Avoiding Forced Attacks
- Hash Brute-forcing 00:04:26
- Hashcat 00:09:30
- Form Brute-forcing 00:07:30
- Hydra 00:07:24
-
Chapter 5 : New Tools in the Arsenal
- Introduction to Vulnerability Scanners 00:08:24
- Open Redirects and Open Proxies 00:06:07
- Remote Command Execution RCE 00:06:24
- Information Disclosure 00:05:26
- Tampering Data in Packets 00:04:42
-
Chapter 6 : Silent Manipulation with CSRF
- What Is CSRF? 00:04:10
- CSRF Tester Tool 00:08:34
- Tokens and the Same-origin Policy 00:07:11
-
Chapter 7 : Extra Measures for the Shop
- OWASP ZAP 00:06:32
- Two-factor Authentication 00:03:57
- Weak Passwords and Phishing 00:05:47
- Clickjacking 00:06:27
- Wrapping Up 00:04:43
Product information
- Title: Kali Linux Web App Testing
- Author(s):
- Release date: May 2015
- Publisher(s): Packt Publishing
- ISBN: 9781784399122
You might also like
video
Linux Fundamentals
10+ Hours of Video Instruction Linux Fundamentals LiveLessons has more than 10 hours of comprehensive video …
video
The Complete Cybersecurity Bootcamp (Video Collection): Threat Defense, Ethical Hacking, and Incident Handling
More than 25 Hours of Expert Video Instruction This course is a complete guide to help …
video
Security Penetration Testing The Art of Hacking Series LiveLessons
10 Hours of Expert Video Instruction Overview This course is a complete guide to help you …
video
From Zero to Ethical Hacker: 10 Weeks to Becoming an Ethical Hacker and Bug Hunter
These videos are companion files meant to be used with the Learning Path: From Zero to …