NotSoSecure is pleased to launch their much awaited advanced Web Hacking class. Much like the Advanced Infrastructure Hacking class, this class talks about a wealth of hacking techniques to compromise web applications, APIs and associated end-points. This class focus on specific areas of app-sec and on advanced vulnerability identification and exploitation techniques (especially server side flaws). The class allows attendees to practice some neat, new and ridiculous hacks which affected real life products and have found a mention in real bug-bounty programs. The vulnerabilities selected for the class either typically go undetected by modern scanners or the exploitation techniques are not so well known. Attendees can also benefit from a state-of-art Hacklab and we can provide 30 days lab access after the class to allow attendees more practice time.
This fast-paced class, gives attendees an insight into Advanced Web Hacking, the team has built a state of the art hacklab and recreated security vulnerabilities based on real life Pen Tests and real bug bounties seen in the wild.
Token Hijacking attacks
Logical Bypass / Boundary Conditions
JWT Token Brute-Force attacks
SAML Authentication and Authorization Bypass
XXE through SAML
Advanced XXE Exploitation over OOB channels
Host Header Validation Bypass
Case study of popular password reset fails.
Known Plaintext Attack (Faulty Password Reset)
Path Traversal using Padding Oracle
Hash length extension attacks
2nd order injection
SQLi through crypto
OS code exec via powershell
Advanced topics in SQli
Java Serialisation Attack
PHP object injection
Ruby/ERB template injection
Exploiting code injection over OOB channel
Invite/Promo Code Bypass
API Authorization Bypass
SSRF to call internal files
SSRF to query internal network
Malicious File Extensions
Circumventing File validation checks
HTTP Parameter Pollution (HPP)
XXE in file parsing
A Collection of weird and wonderful XSS and CSRF attacks.
Combining Client-side and or Server-side attacks to steal internal secrets
Whoever works with or against the security of modern web applications will enjoy and benefit from this class. This is not a beginner class and attendees are expected to have a good prior understanding of the OWASP top 10 issues to gain maximum value from the class. Further to this, the class does not cover all AppSec topics and focuses only on advanced identification and exploitation techniques of the vulnerabilities shown on the right.
Lab-Based Training - Written by BlackHat Trainers - Available Globally
NotSoSecure classes are ideal for those preparing for CREST CCT (ICE), CREST CCT (ACE), CHECK (CTL), TIGER SST and other similar industry certifications, as well as those who perform Penetration Testing on infrastructure / web applications as a day job & wish to add to their existing skill set.
Working exclusively with 3 training delivery partners, NotSoSecure Hacking Training is available around the world.