Raphael Viera
Teaching
Master’s Degree in Microelectronics and Computer Science
Training: From Chip to Web: A Bottom-Up Approach to IoT Penetration Testing
Activities
Projects
Publications
Research Topics
Hardware Security
Blog
Contact me
Home
All Courses
Sécurité des Réseaux Informatiques pour le Web
Sécurité des Réseaux Informatiques pour le Web
Curriculum
4 Sections
14 Lessons
Lifetime
Expand all sections
Collapse all sections
TP1 Introduction and Server-Side Vulnerabilities
In this session, you will set up the environment for web pen testing and begin hands-on lab exercises, starting with SQL injection.
6
1.1
Overview
1.2
Evaluation
1.3
Getting Ready for the Laboratory Sessions
1.4
Burp Suite
1.5
Zed Attack Proxy (ZAP)
1.6
SQL Injection
TP2 – Server-Side Vulnerabilities
Continuation of hands-on lab exercises (server-side)
2
2.0
Directory Traversal
2.1
Authentication Vulnerabilities
TP3 – Server-Side Vulnerabilities
Continuation of hands-on lab exercises (server-side)
2
3.0
Access Control
3.0
File Upload Vulnerabilities
TP4 – Server and Client-Side Vulnerabilities
Continuation of hands-on lab exercises (server-side and client-side)
4
4.0
Server-Side Request Forgery (SSRF)
4.1
Cross-site Request Forgery (CRSF)
4.2
Cross-site Scripting (XSS)
4.3
Clickjacking
This content is protected, please
login
and
enroll
in the course to view this content!
Modal title
Main Content