Web Application Penetration Testing: Client-side Testing

Focused View

Prasad Salvi

1:07:53

37 View

1-Course Overview

01-Course Overview.mp4

01:34

2-Exploiting Cross Site Scripting Attacks

02-Introduction.mp4

06:05

03-Stored XSS.mp4

01:50

04-Demo - Stored XSS.mp4

04:25

05-Reflected Cross Site Scripting.mp4

01:52

06-Demo - Reflected Cross Site Scripting.mp4

05:41

07-Mitigations of Stored and Reflected XSS.mp4

02:38

08-DOM XSS and JavaScript Execution.mp4

03:16

09-Demo - DOM XSS.mp4

04:53

10-Mitigations DOM XSS.mp4

01:11

11-Summary.mp4

01:07

3-Testing Client-side Redirects, HTML Injection, and ClickJacking

12-Client Side Redirects.mp4

02:12

13-Demo - Client Side Redirects.mp4

02:31

14-Mitigations Client Side Redirects.mp4

01:13

15-HTML Injection.mp4

02:04

16-Demo - HTML Injection.mp4

03:33

17-Mitigations HTML Injection.mp4

01:47

18-Clickjacking.mp4

02:10

19-Demo - Clickjacking.mp4

02:11

20-Mitigations ClickJacking.mp4

01:14

21-Summary.mp4

00:47

4-Testing Different Types of Storage - Web Local Session

22-Introduction.mp4

02:19

23-Local Storage.mp4

01:47

24-Session Storage.mp4

01:34

25-Demo - Local and Session Storage.mp4

03:31

26-Mitigations-local and Session Storage.mp4

01:29

27-Summary.mp4

00:36

28-Course Summary.mp4

02:23

Description

Do not let hackers execute different client-side attacks on your website. This course will teach you how to be proficient in performing client-side attacks like Cross Site Scripting, HTML Injection, Client-side redirects, and explain how to fix them.

What You'll Learn?

Hackers are getting access to your sensitive data by exploiting client-side vulnerabilities. In this course, Web Application Penetration Testing: Client-side Testing, you will gain the ability to perform different client-side attack techniques. First, you will learn Cross-Site Scripting (XSS) attacks. Next, you will discover how to test for HTML injection and URL redirects. Finally, you will learn how to test for Clickjacking attacks, testing local, and session storage. When you’re finished with this course, you will have the skills and knowledge of client-side testing needed to perform web application penetration testing and mitigate those attacks.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

Penetration Testing

Prasad Salvi

Instructor's Courses

Prasad is an Application Security Consultant, a certified ethical hacker and CISA certified professional with primary focus on providing services across the Secure Development Life cycle, Application Security and Penetration Testing spectrum. He is a part time bug bounty hunter. He is a blue team expert delivering security training courses to developers and testers to make them proficient in application security and develop secure products. He has worked with major financial institutions and vouched to create a culture of security. Prasad is also a Cyber Security Industry mentor at Stanford University for the Advanced Cyber Security Program.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.