Learn essential web penetration testing techniques using Burp Suite in this comprehensive tutorial. Explore the platform's integrated tools for security testing of web applications, covering initial mapping, analysis of attack surfaces, and vulnerability exploitation. Master parameter passing, code injection, cross-site scripting (XSS), local and remote file inclusion (LFI & RFI) attacks, and SQL injection. Configure Burp Suite with FoxyProxy, practice cookie stealing, and understand HTTP methods availability. Gain hands-on experience in combining advanced manual techniques with state-of-the-art automation to enhance your web application security testing skills.
Overview
Syllabus
Burp Suite Pentesting: My Methodology for Web Pentest. Getting started.
Burp Suite Tutorial: Performing Parameter Passing Websites.
Burp Suite Tutorial: Parameter Passing and Code Injection.
Burp Suite Tutorial: Code Injection From a Fuzzdb List.
Burp Suite: XSS and LFI & RFI Attacks.
Tutorial: Configuration of Burp Suite Using FoxyProxy | WEB APP Pentesting 2021.
Web App Pentesting | Cookie Stealing with Cross-site Scripting Vulnerability 2021.
Web App Testing with Python & Availability of HTTP methods | Cross-Site Tracing (XST). 2021.
Union Based SQL Injection Attack For data extraction & Other Injection Flaws/Errors.
Taught by
InfoSecAddicts
Related Courses
-
Ethical Hacking 101: Web App Penetration Testing - a full course for beginners
4.6 -
Input Validation Testing with Burp Suite
-
Crawl and Scan with Burp Suite
-
Web Application Penetration Testing
-
Burp Suite Unfiltered - Go from a Beginner to Advanced
-
Web Application Ethical Hacking - Penetration Testing Course for Beginners
4.1
