Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Pluralsight

Web App Hacking: Cookie Attacks

via Pluralsight

Overview

In this course, you will learn how severe consequences can happen as a result of insecure cookie processing. You will see how cookie attacks work in practice and how to test web applications for various cookie processing flaws.


Cookies are interesting for attackers because of the sensitive data they store. This course, Web App Hacking: Cookie Attacks, will teach you how to avoid the severe consequences of insecure cookie processing. First, you'll learn how cookies with sensitive data can leak over insecure channel. Next, you'll learn how the attacker can hijack cookies remotely. You'll also learn about weaknesses in cookie lifecycle and see one of the most underestimated cookie attacks - XSS via cookie. Finally, you'll learn how the attacker can tamper remotely with cookies of the user. By the end of the course, you'll know how cookie attacks work in practice and how to test web applications for various cookie processing flaws. What's more, you will learn how to process cookies securely.

Syllabus

  • Course Overview 1min
  • Introduction 6mins
  • Leakage of Cookie with Sensitive Data 8mins
  • Cookie Hijacking 9mins
  • Weaknesses in Cookie Lifecycle 11mins
  • Underestimated Risk: XSS via Cookie 11mins
  • Remote Cookie Tampering 8mins
  • Summary 5mins

Taught by

Dawid Czagan

Reviews

4.1 rating at Pluralsight based on 103 ratings

Start your review of Web App Hacking: Cookie Attacks

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.