Search articles
OWASP Short Course - Web Application Security announced from Cyber Coaching
Cyber Coaching have announced a new short course around Web Application Security and the OWASP top 10. This course is perfect for those beginning their career within pentesting, and those that need more information around web application attacks to be able to really understand the topics and speak about them when asked in an interview stage. Also being able to document and report on them competently.
The course is held online and is currently being offered as a Black Friday Special deal at £29.99.
The course will cover;
Introduction of Web application security
- Injections - Overview | How to Attack | Defences | The Risks
- Broken Auth - Overview | How to Attack | Defences | The Risks
- XSS - Overview | How to Attack | Defences | The Risks
- IDOR - Overview | How to Attack | Defences | The Risks
- Sec Misconfig - Overview | How to Attack | Defences | The Risks
- Sensitive Data Exposure - Overview | How to Attack | Defences | The Risks
- Function level Access - Overview | How to Attack | Defences | The Risks
- CSRF - Overview | How to Attack | Defences | The Risks
- Known Vulns - Overview | How to Attack | Defences | The Risks
- Redirects - Overview | How to Attack | Defences | The Risks
Each one of the ten modules that align to the ‘top 10’ will contain four key messages. The first is the overview of the risk, which will categorise the risk and the severity and then show a high-level overview of how its executed.
We will then move on to understanding the risk in more detail and go through a basic attack scenario. The idea here is to share a step-by-step process on how an attacker may exploit the risk in vulnerable web application.
The most important area is then to understand the common defences. We will outline three key areas for each risk that will secure the application, using multiple layers of defence.
We will then provide a past real-world example of each risk to help ensure full understanding. Find out more here
By Cyber Coaching
• Cyber Coaching