Web Security Academy Learning Path

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Grab it

The Web Security Academy is a free online training center for web application security. It includes content from PortSwigger's in-house research team, experienced academics, and Chief Swig Dafydd Stuttard.

Unlike a textbook, the Academy is constantly updated. It also includes interactive labs where you can put what you learn to the test. If you want to improve your knowledge of hacking, or you'd like to become a bug bounty hunter or pentester, you're in the right place.

Syllabus

Server-side topics

SQL Injection
Authentication
Directory Traversal
Command Injection
Business Logic Vulnerabilities
Information Disclosure
Access Control
File Upload Vulnerabilities
Server-side Request Forgery (SSRF)
XXE Injection

Client-side Topics

Cross-site Scripting (XSS)
Cross-site Request Forgery (CSRF)
Cross-origin Resource Sharing (CORS
ClickJacking
DOM-based Vulnerabilities
WebSockets

Advanced Topics

Insecure deserialization
Server-side Template Injection
Web Cache Poisoning
HTTP Host Header Attacks
HTTP Request Smuggling
OAuth Authentication
JWT Attacks

Burp Suite Certified Practitioner

Certification Exam

Reviews

Start your review of Web Security Academy Learning Path

Black Friday 2024: 25+ Ways to Save on Online Learning

Most common

Popular subjects

Popular courses

Web Security Academy Learning Path

Overview

Syllabus

Reviews

Black Friday 2024: 25+ Ways to Save on Online Learning

Intigriti Hackademy

Ethical Hacking 101: Web App Penetration Testing - a full course for beginners

Bug Bounty Hunter Job Role Path

Burp Suite Bug Bounty Web Hacking from Scratch

Web Security & Bug Bounty: Learn Penetration Testing

Intro to Bug Bounty Hunting and Web Application Hacking

10 Best Bug Bounty Courses for 2024: Ethical Hacking, Safer Web

Never Stop Learning.