OSCP: 3 Dimensions of Web Application Pen Testing
https://www.ispeech.org/text.to.speech
Web applications can be confusing and indimating. In this video we break down the three areas you should focus on during your testing of web applications: the File server component, the application's code, and the protocol. By breaking down web applications in smaller chunks, you will have an easier time of keeping track of your findings and grab the right tool out of your tool box. Both of which should lead you to finding more stuff. Enjoy!
NEWS: Offensive Security has a new course on web app pen testing. I haven't taken it but check it's probably pretty solid:https://www.offensive-security.com/information-security-training/advanced-web-attack-and-exploitation/
Zed Attack Proxy - https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
What is Spidering - https://hsploit.com/web-app-penetration-testing-5-target-scope-and-spidering/
What is SQLi - https://en.wikipedia.org/wiki/SQL_injection
What is XSS - https://en.wikipedia.org/wiki/Cross-site_scripting
OWASP Top 10 - https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf
HTTP Protocol - https://www.w3.org/Protocols/rfc2616/rfc2616.html
HTTP Headers - https://en.wikipedia.org/wiki/List_of_HTTP_header_fields
Twitter: @thecyberunion0
Web: https://www.thecyberunion.com/
Blog: https://www.thecyberunion.com/blogs
Music:
ββββββββββββββββββββββββββββββ
Jorg by A Himitsu https://soundcloud.com/a-himitsu
Creative Commons β Attribution 3.0 Unportedβ CC BY 3.0
Free Download / Stream: https://bit.ly/a-himitsu-jorg
Music promoted by Audio Library https://youtu.be/4PDRDdV85z4
ββββββββββββββββββββββββββββββ
source
0 Responses to OSCP: 3 Dimensions of Web Application Pen Testing