Catalogue · MOD-OFF-03

Web Application Security

Web applications are the primary attack surface. This module teaches you to detect and exploit OWASP vulnerabilities, then fix them — following a reproducible audit process.

Offensive (Red) Praticien 6 bricks 10 labs ≈ 18.8 h 5 real cases

Objectives

• Certify the default security of web applications • Discover and fix vulnerabilities • Follow an established audit process • Automate and secure against attacks

Module bricks

BRQ-OFF-010 — Web mapping & authentication flaws (Burp Suite) (2 lab(s))
BRQ-OFF-011 — SQL injection (SQLmap) (1 lab(s))
BRQ-OFF-012 — XSS flaws & file injection (2 lab(s))
BRQ-OFF-013 — Access control bypass & deserialisation (2 lab(s))
BRQ-OFF-014 — Session security & JWT (jwt_tool) (1 lab(s))
BRQ-OFF-015 — App scanning & remediation (ZAP/Semgrep) (2 lab(s))

Order this module View full catalogue