Practical Web Application Security and Testing is an entry-level course on web application technologies, security considerations for web application development, and the web application penetration testing process. We begin with the basics of HTTP, servers, and clients, before moving through the OWASP Top 10 on our way to a full demonstration penetration test. We also cover the reporting process for web application assessments, so you’re prepared not only to conduct security assessments on web applications but also clearly and effectively communicate your findings.
Syllabus
- Prologue
- Setup
- Web Application Concepts
- Server-Side Webapps
- The OWASP Top 10
- Client-Side Webapps
- Webapp Pentesting Methodology
- Juice Shop Pentest
- Reporting
- Final Thoughts