SEC542 provides hands-on training for identifying and exploiting vulnerabilities in web applications while teaching the ethical hacking techniques necessary to secure them. Participants will explore critical areas such as injection flaws, cross-site scripting (XSS), authentication bypasses, and security misconfigurations. The course includes advanced topics like automated scanning, manual testing techniques, and analyzing modern web technologies such as APIs, frameworks, and single-page applications. Through practical labs and real-world scenarios, SEC542 equips security professionals with the skills to assess web applications effectively and provide actionable remediation strategies to strengthen overall security posture.
- Introduction and Information Gathering
- Fuzzing, Scanning, Authentication, and Session Testing
- Injection
- XSS, SSRF, and XXE
- CSRF, Logic Flaws and Advanced Tools
- Capture the Flag
