NKCD-CERTIFIED WEB PENTEST

NKCD-CERTIFIED WEB APP PENTEST

614079a4 bccb 47d7 b2a8 2e26fdf79184

Course Outlines

  • Introduction, OWASP Top 10
  • Installing Lab
  • Enumeration
  • Vulnerability Scanning
  • Introduction to burpsuite,Authentication bypass using burpsuite
  • Html injection, Introduction about cookie
  • XSS (reflected, stored, DOM)
  • XSS Advance
  • Introduction to BeeF and browser Hijack
  • Cookie stealing and session Hijack
  • Broken Access Control
  • Broken session and security misconfiguration
  • Using Components with Known Vulnerabilitie
  • Uploading web shell
  • Uploading web shell filter bypass Evaluation
  • Path traversal, LFI and RFI basic
  • LFI RFI advance
  • Lab 1 solving
  • Lab 2 solving
  • Lab 3 solving

 

Laptop requirements

Important! Set up your own system according to these guidelines.
To effectively engage in this course, your system must be properly configured. If you do not properly read and follow these directions, you will be unable to fully engage in the course’s hands-on tasks. Please ensure that you are available with a system that meets all of the mentioned requirements.Make a backup of your system before attending class. Better better, use a system that does not contain any sensitive or critical data. NK-Cyber Defense is not liable for your system or data.

MANDATORY ETHICAL HACKING SYSTEM HARDWARE REQUIREMENTS

CPU: 64-bit Intel i5/i7 (8th generation or later), or Ryzen equivalent. This class requires an x64-bit processor with a clock speed of 2.0 GHz or above.CRITICAL: Apple Silicon devices cannot execute the required virtualization and so cannot be used for this course.BIOS settings must be changed to allow virtualisation technologies, such as the “Intel-VTx” or “AMD-V” extensions. If your BIOS is password protected, make sure you can access it in case you need to make modifications.At least 8GB of RAM is necessary.At least 50GB of free storage space is required.There is at least one accessible USB 3.0 Type-A port. A Type-C to Type-A converter may be required for modern laptops.Some endpoint protection software does not allow the usage of USB devices, so test your system with a USB drive before class.Wireless networking (802.11) is required. There is no wired internet access in the classroom.