If you’ve always been curious about how hackers identify and exploit vulnerabilities in Web applications, look no further than this course. Loosely based on the OWASP Top 10, the course covers a wide range of Web-security issues, from well-known ones like cross-site scripting (XSS) to more obscure ones like subdomain takeover. But you won’t just learn the mechanics of those vulnerabilities and the defenses that can thwart their exploitation; you’ll develop an attacker’s mindset while attacking multiple deliberately vulnerable Web applications using Caido, an increasingly popular intercepting proxy. Those practical labs (exceeding 80 in number) are complemented by case studies and personal stories from my experience as a security researcher and bug-bounty hunter.
No comments yet. Log in to reply on the Fediverse. Comments will appear here.