Secure Coding in Spring Framework

Focused View

Chris Behrens

53:01

0 View

1. Course Overview

1. Course Overview.mp4

01:30

2. Session Management Vulnerabilities

1. Understanding Session Vulnerabilities.mp4

03:44

2. Exploiting Session Fixation.mp4

09:49

3. Testing for Broken Logout.mp4

05:00

3. Session Best Practices

1. Cookie Attributes.mp4

06:28

2. Testing for Session Token Strength.mp4

07:47

3. Identifying Exposed Session Variables.mp4

06:23

4. Cross-site Request Forgery

1. Understanding Cross-site Request Forgery.mp4

05:22

2. Exploiting Cross-site Request Forgery.mp4

03:48

3. Course Closure.mp4

03:10

Description

Vulnerabilities related to session management have a high impact since they can lead to unauthorized access to data. This course will teach you how to test session security using Burp Suite.

What You'll Learn?

Identifying session vulnerabilities is one of the main objectives of a web application penetration test. Burp suite is one of the best tools on the market for testing session management. It contains several tools to handle raw requests and test session tokens.

In this course, Session Management Testing with Burp Suite, you’ll learn to test session misconfigurations using Burp. First, you’ll explore how session management works. Next, you’ll discover how to exploit common session vulnerabilities, including session fixation and broken logout features. Finally, you’ll learn to execute a Cross-site Request Forgery (CSRF) attack using Burp. When you’re finished with this course, you’ll have the skills and knowledge of Burp Suite needed to test the security of web application sessions.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Spring Framework

Chris Behrens

Instructor's Courses

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.