Web Hacker's Toolbox - Tools Used by Successful Hackers

Focused View

Dawid Czagan

3:00:47

3 View

Chapter 1 - Introduction to the Course

1. Introduction.mp4

02:05

Chapter 2 - How Hackers Find SQL Injections in Minutes with Sqlmap

01. Introduction.mp4

10:10

02. The Basics of Sqlmap - Overview.mp4

06:58

03. The Basics of Sqlmap - Demo.mp4

04:40

04. Dumping Database Table Entries - Overview.mp4

02:06

05. Dumping Database Table Entries - Demo.mp4

03:39

06. From SQL Injection to Remote Code Execution - Overview.mp4

04:19

07. From SQL Injection to Remote Code Execution - Demo.mp4

04:00

08. More Advanced Testing with Sqlmap - Overview.mp4

07:21

09. More Advanced Testing with Sqlmap - Demo.mp4

06:51

10. Bypassing Web Application Firewalls - Overview.mp4

07:06

11. Bypassing Web Application Firewalls - Demo.mp4

04:45

12. Summary.mp4

05:06

Chapter 3 - Web Application Security Testing with Google Hacking

01. Introduction.mp4

02:53

02. Google Hacking - Finding Directory Listings.mp4

02:52

03. Google Hacking - Finding SQL Syntax Errors.mp4

03:56

04. Google Hacking - Finding Publicly Exposed Backup Files.mp4

02:50

05. Google Hacking - Finding Internal Server Errors.mp4

02:59

06. Google Hacking - Finding Sensitive Data in URLs.mp4

03:16

07. Google Hacking - Finding Insecure HTTP Web Pages.mp4

03:12

08. Google Hacking Database.mp4

02:16

09. Case Study - Microsoft Yammer Social Network.mp4

01:31

10. How to Prevent Google Indexing from Happening.mp4

01:47

11. Summary.mp4

03:35

Chapter 4 - Fuzzing with Burp Suite Intruder

1. The Basics of Fuzzing.mp4

04:20

2. Fuzzing with Burp Suite Intruder - Overview.mp4

06:04

3. Fuzzing for SQL Injection - Demo.mp4

17:54

4. Fuzzing for Path Traversal - Demo.mp4

11:35

5. Fuzzing with Burp Suite Intruder - Tips and Tricks.mp4

05:26

Chapter 5 - Exploiting Race Conditions with OWASP ZAP

1. Introduction.mp4

01:46

2. Exploiting Race Conditions - Case 1 (Part1).mp4

11:27

3. Exploiting Race Conditions - Case 1 (Part2).mp4

08:35

4. Exploiting Race Conditions - Case 2.mp4

10:52

5. Case Studies of Award-Winning Race Condition Attacks.mp4

02:35

Description

Ethical hackers and penetration testers need a very good toolbox to do their job efficiently. They would also need to learn step-by-step how to use the tools from this toolbox and that’s exactly what this course delivers. In this course, we will demonstrate Sqlmap, which is the most powerful tool for automated SQL injection detection and exploitation. The course will also present Google Hacking and show you how it can be used to find security weaknesses in web applications. Later on in the course, you will be presented with fuzzing, which is a vulnerability detection technique used by many successful hackers, and it will be demonstrated how to perform fuzzing with Burp Suite Intruder. Finally, you will learn how to exploit race conditions with OWASP ZAP. Race conditions can lead to very dangerous attacks on modern web applications, and this is exactly what we will demonstrate at later stages. By the end of this course, you will have worked on the tools used by successful hackers and start using them in your own penetration testing projects going forward.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Ethical Hacking

Penetration Testing

Dawid Czagan

Instructor's Courses

Dawid Czagan is listed among the Top 10 Hackers by HackerOne. He has found security vulnerabilities in Google, Yahoo, Mozilla, Microsoft, Twitter, and other companies. Due to the severity of these bugs, he has received numerous awards for his findings. He has delivered security training courses at key industry conferences, such as Hack In The Box, CanSecWest, 44CON, Hack In Paris, DeepSec, BruCON, and for many corporate clients. His students include security specialists from Oracle, Adobe, Red Hat, Trend Micro, Philips, ESET, ING, and the government sector. Dawid Czagan is founder and CEO at Silesia Security Lab, which delivers specialized security auditing and training services.

PacktPub

View courses PacktPub

Packt is a publishing company founded in 2003 headquartered in Birmingham, UK, with offices in Mumbai, India. Packt primarily publishes print and electronic books and videos relating to information technology, including programming, web design, data analysis and hardware.