Penetration Testing of Identity, Authentication and Authorization Mechanism

Focused View

Prasad Salvi

56:56

64 View

00. Course Overview

00. Course Overview.mp4

01:19

01. Testing Identity Management

00. Introduction.mp4

03:01

01. Identity Management Basics.mp4

03:17

02. Demo - Weak Techniques.mp4

10:15

03. Summary.mp4

00:27

02. Breaking the Authentication Mechanism

00. Introduction.mp4

05:11

01. Test for Credentials In Transit.mp4

02:37

02. Test for Default Credentials.mp4

03:00

03. Password Management.mp4

03:36

04. Test for SQL Injection.mp4

02:30

05. Test for Weak Password Policy.mp4

01:11

06. Test For Browser Cache Weakness.mp4

03:13

07. Summary.mp4

02:47

03. Bypassing Authorization to Gain Unauthorized Access

00. Introduction.mp4

04:03

01. Test For Directory Traversal.mp4

03:17

02. Test For Privilege Escalation.mp4

03:16

03. Summary.mp4

01:38

04. Summary and Wrap Up

00. Course Summary.mp4

02:18

Description

Learn how you can perform web application penetration testing on a website’s Identity Management, Authentication and Authorization mechanism and help organizations view their security posture before a malicious hacker exploits them.

What You'll Learn?

Hackers are getting access to your sensitive data by exploiting web application vulnerabilities. In this course, Penetration Testing of Identity, Authentication and Authorization Mechanism, you will gain the ability to perform web application pentesting. First, you will learn Identity Management. Next, you will discover how to crack a websites' Authentication. Finally, you will explore how to bypass Authorization mechanism. When you’re finished with this course, you will have the skills and knowledge of web application penetration testing needed to perform different attack scenarios.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

Penetration Testing

Prasad Salvi

Instructor's Courses

Prasad is an Application Security Consultant, a certified ethical hacker and CISA certified professional with primary focus on providing services across the Secure Development Life cycle, Application Security and Penetration Testing spectrum. He is a part time bug bounty hunter. He is a blue team expert delivering security training courses to developers and testers to make them proficient in application security and develop secure products. He has worked with major financial institutions and vouched to create a culture of security. Prasad is also a Cyber Security Industry mentor at Stanford University for the Advanced Cyber Security Program.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.