Be a Web Application Penetration Tester from Scratch

Course Curriculum

Chapter 1: The Ultimate world of Pentesting Jargons

Lecture 1: What is Pentesting and Web Pentesting.

Lecture 2: Common terminologies in Penetration Testing

Lecture 3: Box Based testing: Black Box, White Box and Grey Box

Lecture 4: Fundamentals of Attacking for Vulnerability Assessment.

Lecture 5: Tools of Trade for Pentester

Lecture 6: Steps to conduct Penetration testing

Lecture 7: OWASP top 10 vulnerability and guidelines

Lecture 8: What we did so far: Summary

Chapter 2: Set up of the Home Lab

Lecture 1: Installation of Attacker linux machine

Lecture 2: Installation of Windows based OS in vm

Lecture 3: Quick tour to pentesting linux

Lecture 4: What we did so far – summary

Chapter 3: Lets learn reconnaissance

Lecture 1: What is reconnaissance

Lecture 2: initial research about target application

Lecture 3: Shodan and advanced google research about target

Lecture 4: offline mirror of target site for local testing

Lecture 5: ICMP – DNS testing and DNS zone transfer

Lecture 6: Nmap and Zenmap tools

Lecture 7: Do not rely completely on tools

Lecture 8: What we did so far- Summary

Chapter 4: Step by Step pentesting guide by OWASP

Lecture 1: What is next to come

Lecture 2: Search Engines, FingerPrint and Metafiles

Lecture 3: Services, source code review and entry points

Lecture 4: Crawlers, Framework detection and Architecture

Lecture 5: Web server configuration and file extension

Lecture 6: web server backups, admin page and http request

Lecture 7: Identity management and role defination in an application

Lecture 8: Test accounts and weak account policy

Lecture 9: Testing for credential transport over Encrypted channel

Lecture 10: lock outs, authentication bypass and defaults

Lecture 11: password cache and password policy

Lecture 12: Security questions and re authentication channel

Lecture 13: Remote and local file inclusion and Directory traversal

Lecture 14: insecure direct object reference and priviledge escalation

Lecture 15: Session management and cookie analysis

Lecture 16: Session fixation and session exposed vulnerabilities

Lecture 17: Cross site request forgery CSRF vulnerability

Lecture 18: Log out and session timeout test

Lecture 19: Input validation for injection and XSS

Lecture 20: What we did so far – Summary

Chapter 5: Automation tools for pentesting

Lecture 1: Webshag and Vega for web app pentesting

Lecture 2: OWASP Zap for automation of testing

Lecture 3: Websploit, wafwoof and W3af tools

Lecture 4: No Brute Force

Lecture 5: Social Engineering Toolkit attacks

Chapter 6: Documenting the Pentesting report

Lecture 1: Problems and markups for security report

Lecture 2: Steps to write Pentesting Documentation report

Lecture 3: Pentesting Report Format

Chapter 7: Web app pentesting project 1

Lecture 1: Setting up project for testing

Lecture 2: brute force with burp suite

Lecture 3: remote code execution vulnerability

Lecture 4: cross site request forgery attack

Lecture 5: file inclusion vulnerability

Lecture 6: SQL injection basics

Lecture 7: Shell uploading and defacing

Chapter 8: Web app pentesting project 2

Lecture 1: Installation of Webgoat as test environment

Chapter 9: Summary

Lecture 1: Summary