Websites and web applications are—by their very nature—accessible remotely, which puts them at high risk of cyber attack. Knowing how to prevent and detect web attacks is a critical skill for developers and information security professionals alike. Find out how to test your sites and applications for weaknesses in this course with cybersecurity expert which examines the various parts of a web application (focusing on the most vulnerable components), and introduces the Open Web Application Security Project (OWASP), which provides documentation, tools, and forums for web developers and testers. Malcolm also provides an overview of popular testing tools, including Burp Suite, Vega, and WebScarab. Learn how to use these utilities to run basic and advanced tests, and shore up sites against common attacks, such as SQL injections and cross-site scripting exploits. The course closes with some resources for practicing your skills, including testing sites such as Trustwave CrackMe Bank and Google Gruyere.
Note: The topics in this course will prepare you for key objectives on the Certified Ethical Hacker exam.