Testing Applications for CompTIA PenTest+

Focused View

Dale Meredith

1:11:23

22 View

01. Course Overview

01. Course Overview.mp4

02:19

02. Examining Common Web-application Vulnerabilities

01. Understanding What Youll Learn.mp4

02:05

02. Examining Common Web-application Vulnerabilities.mp4

02:55

03. Misconfigurations.mp4

07:40

04. Lets ZAP a Web App!.mp4

05:59

03. Executing Authentication and Authorization Attacks

01. Authentication Attacks.mp4

04:52

02. Authorization Attacks.mp4

04:14

04. Exploring the Injection Attacks

01. Code Command Injection.mp4

02:38

02. SQL Injection.mp4

05:00

03. Demo. SQL Injection Union.mp4

06:35

04. HTML Injection.mp4

01:35

05. Showing Further Attack Methods

01. XSS Attacks.mp4

04:26

02. XSRF Attacks.mp4

03:01

03. Clickjacking, File Inclusion, and Web Shells.mp4

07:25

06. Examining Source Code and Compiled Apps

01. Examining Source Code and Compiled Apps.mp4

03:54

02. Reverse Engineering.mp4

06:45

Description

Part of any PenTest engagement application is an extremely high target. The reason is because of so many moving parts from operating systems all the way to even interfaces that are involved. In this course you will learn to check these components through testing.

What You'll Learn?

There are many different ways software can be flawed by both design and implementation, so you will need to accurately execute a wide variety of tests to assess each application that the business is responsible. In this course, Testing Applications for CompTIA PenTest+, you will learn how to exploit the vulnerabilities in web-based applications during an engagement. First, you will learn the commonalities among web-apps. Once you understand this, you will be able to utilize this knowledge to your advantage. Next, you will explore the different types of authentication, injection, and web shell attacks you can use to exploit these apps. Finally, you will use specific analysis techniques on compiled software to see if you can compromise these types of applications. When you are finished with this course, you will have the skills and knowledge of penetration tester needed to exploit most any app on any engagement.

Software required: [software required.] *

Setting up the Lab environment from the "Laying the Foundation for Penetration Testing for CompTIA PenTest+" course.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

CompTIA Pentest+

Dale Meredith

Instructor's Courses

Dale Meredith has been a Certified Ethical Hacker/Instructor EC-Council for the past 15 years, and Microsoft Certified Trainer for over 20 years. Dale also has an additional 7 years of senior IT management experience and worked as a CTO for a popular ISP provider. Dale's expertise is in explaining difficult concepts and ensuring his students have an actionable knowledge of the course material. Straddling the line of fun and function, Dale's instruction is memorable and entertaining. Dale's knowledge and understanding of current trends in technology and applications have led to many opportunities, such as: training various Inc 500 companies, universities, and Divisions of the Department of Homeland Security for the United States government. Along with authoring for Pluralsight, consulting, and IT classroom training, you can catch Dale on stage speaking at IT conferences, helping IT teams keep their companies safe, relevant, and "breach" aware. Outside of the professional sphere, Dale spends quite a bit of his time giving back by speaking at adult and youth non-profit community gatherings and posting on his 'Dale Dumbs IT Down' social media sites. Dale uses these speaking engagements and social media sites to 'Dumb Down IT' concepts with the intent to help everyone be safe and smart with their technology and personal devices. Dale also specializes in Active Directory, Exchange Server, IIS, PowerShell, SharePoint, System Center/Desktop Deployment, and Private Cloud

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.