Web Security | Cycerone

20 timmar att slutföra

Schemalagda timmar: 5 timmar
Beräknade studietimmar: 15 timmar

Avancerad

Avancerad erfarenhet krävs

Lärare

Matteo Golinelli
Researcher

Språk

English, Italiano
Subtitles: English, Italiano

This course provides a structured introduction to web application security through a combination of concise theory and hands-on exercises. It is designed for learners with basic familiarity with web technologies and general cybersecurity concepts who want to develop practical skills in identifying and exploiting common web vulnerabilities. The course covers how web applications work at a fundamental level, including the HTTP protocol, and examines both server-side and client-side security issues. Topics include input validation flaws, file handling vulnerabilities, injection attacks, authentication and logic weaknesses, and browser-based attacks. Practical learning is delivered through a series of progressively challenging exercises that simulate real-world scenarios, where participants are required to analyse application behaviour, identify weaknesses, and apply appropriate exploitation techniques. After completing the course, participants will be able to systematically assess web applications for common security flaws, understand how these vulnerabilities can be exploited, and interpret the impact of successful attacks.

Lärandemål

Analyse HTTP requests and responses to understand web application behaviour.
Identify and exploit common server-side vulnerabilities, including file disclosure, path traversal, and injection flaws.
Apply SQL injection techniques to extract and manipulate data in controlled environments.
Detect and exploit client-side vulnerabilities such as XSS and CSRF.
Evaluate application logic to identify authentication and business logic weaknesses.
Use systematic approaches to enumerate, test, and validate web application attacks.

Förkunskaper

Knowledge of basic HTTP concepts
Familiarity with web applications
Basic experience with scripting languages (e.g., JavaScript and Python)
General knowledge of cybersecurity fundamentals.

Ämnen som behandlas

Offensive SecuritySecure Development

Få ett certifikat

Ett certifikat vid slutförande finns tillgängligt för den här kursen. För mer information, kontakta kursleverantören direkt.

Bygg din expertis

Den här kursen ingår i följande lärvägar: Secure Software & DevSecOps, Penetration Tester

Kunskaper inom cybersäkerhet byggs inte upp i ett enda pass. Att följa en strukturerad lärväg hjälper dig att utveckla en komplett och sammanhängande kompetens: steg för steg, i din egen takt.

Vet du inte var du ska börja?

Upptäck hur Cycerone-portalen fungerar, hur kurser och lärvägar är organiserade och hur du hittar de utbildningsmöjligheter som bäst passar dina behov.

Upptäck hur det fungerar