Note: The Ethical Hacking series maps to the 20 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312-50) version 10.
- Key elements of web-based applications
- Working with cookies
- Web testing with WebGoat and Burp Suite
- Running basic tests, such as fingerprinting web servers
- Advanced testing, including testing for SQL injections
Skill Level Intermediate
- [Malcolm Shore] The World Wide Web is now an essential service for everyone, at home, in business, and in the government, providing easy access to information anywhere, anytime. Businesses communicate with their customers through the web. Governments communicate with citizens through the web. And we all use the web for ecommerce services, such as online banking and shopping. Web services are accessible remotely. We can access web services from our home and business computers and from mobile devices when we're on the go. And this puts them at high risk of cyber attack. I'm Malcolm Shore, and I've spent a career helping governments and businesses protect their systems against cyber attacks. In this course I'll explain the technology used in websites and web applications, and look at the top risks that web designers have to avoid. I'll demonstrate some of the popular tools available to do web testing, including Burp Suite, Vega, and WebScarab. And I'll show how to use these to scan websites and run as web proxies. I'll also look at some of the websites where you can practice your web testing. When you finish this course, you'll have a great understanding of how to test for website weaknesses. Now let's get started with web testing.