Find out how to test websites and web applications for weaknesses and prevent cyber attacks like SQL injections and cross-site scripting exploits, in this course from our Certified Ethical Hacker exam prep series.
- [Instructor] The world wide web is now an essential service for everyone at home, in business and in the government, providing easy access to information anywhere, anytime. Businesses communicate with our customers through the web, governments communicate with citizens through the web. We all use the web for ecommerce services, such as online banking and shopping. Web services are accessible remotely. We can access webs services from our home and business computers and from mobile devices, when we're on the go.
This puts them at high risk of cyber attack. I'm Malcolm Shore and I've been to Korea helping governments and businesses protect their systems against cyber attacks. In this course, I'll explain the technology used in websites and web applications and look at the top risks that web designers have to avoid. I'll demonstrate some of the popular tools available to do web testing, including Burp Suite, Vega and WebScarab. I'll show how to use these to scan websites and run as web proxies.
I'll also look at some of the websites where you can practice your web testing. When you finish this course, you'll have a great understanding of how to test for website weaknesses. Now let's get started, with web testing.
Note: The topics in this course will prepare you for key objectives on the Certified Ethical Hacker exam. Find an overview of the certification and the exam handbook at https://www.eccouncil.org/programs/certified-ethical-hacker-ceh/.
- Dissecting HTTP/HTTPS protocol
- Working with WebSockets
- Understanding cookies
- Installing testing tools such as Hacme Casino and the Vega Scanner
- Running web application tests
- Practicing your skills