The course
This 2-day web application ethical hacking course covers the fundamentals of the industry-recognised OWASP Top Ten – to quote OWASP: “the ten most critical web application security risks”. You will have access to a functional ASP.NET and PHP application through which theory is reinforced by way of practical exercises. The course demonstrates hacking techniques - there’s no better way to understand attacks than by doing them yourself - but this is always done with defence in mind and countermeasures are taught throughout. Knowledge of, and protection against, the OWASP Top Ten is a core requirement of the Payment Card Industry Data Security Standard (PCI DSS) and therefore CSTP is ideally suited to web developers and QSAs as well as IT security officers and budding penetration testers.
Delegates who successfully complete the exam included at the end will be awarded the CSTP qualification. Completion of CSTP satisfies the prerequisites for 7Safe’s CAST course (advanced web application security) and is an excellent foundation towards the CREST Registered Tester qualification, along with CSTA
Prerequisites
A basic understanding of how a web page is requested and delivered:
- Are you familiar with the high-level components involved, e.g. browsers, web servers, web applications and databases?
- What is HTTP?
- What is HTML?
A basic understanding of databases and SQL would be an advantage:
- Do you understand the concept of data storage in tables within a relational database?
- Can you construct a simple SELECT statement to extract data from a table?
Practical Course Content 
Principles
- Web Application Vulnerability Assessment Tools – Paros, Acunetix WVS, limitations
- HTTP Request & Response Modification – logic flaws
Injection
- The Structured Query Language
- SQL Injection with UNION SELECT
- Bypassing Authentication using SQL injection
- SQL Injection & Stored Procedures
- Blind SQL Injection
Cross-Site Scripting (XSS)
- E-mail Spoofing
- Testing for Cross-Site Scripting Vulnerabilities
- Stealing Login Credentials using XSS
- Session Hijacking and Cookie Theft
Broken Authentication and Session Management
- Extracting Credentials via SQL Injection
- Dictionary Attack using the Burp Suite
Security Misconfiguration
- Exploiting a Misconfigured Web Server
Failure to Restrict URL Access
- Recovering POST Data & ASP.NET Trace
- Information Leakage via Web Application Logs
Unvalidated Redirects and Forwards
- Exploiting an Unvalidated Redirection Page
Download
PDF
|
Course outline
Read the CSTP Ethical Hacking Training Course: Hands-On 2 training course outline to find out more about the many topics covered in CSTP Ethical Hacking: Hands-On 2 |
Frequently Asked Questions (FAQ)