Join Malcolm Shore for an in-depth discussion in this video Approaching web testing, part of Penetration Testing Essential Training.
- [Instructor] Most applications are now delivered…as web applications, or as mobile apps supported…by a web based service.…Consequently, web testing is a key skill for a pen tester.…The cost of not testing web apps can be readily seen…in the many examples of data breaches…resulting from an insecure website.…TalkTalk is one of many, and it made headlines.…The culprit was a 17-year-old boy who used hacking tools…and looted email addresses, names and phone numbers,…as well as 21000 unique bank account numbers and sort codes.…
TalkTalk subsequently tested their websites,…but this would have been much more effective…before the hack.…There are two main approaches to testing websites.…The first is to crawl each page in the website,…looking for vulnerabilities.…This can provide a good map of where to look for weaknesses.…The second approach,…and sometimes the second stage after crawling,…is to intercept the website traffic by using a proxy service…between the web client and the server.…In addition, manually checking web pages for comments…
Cybersecurity expert Malcolm Shore reviews popular pen testing tools, as well as the Bash and Python scripting skills required to be able to acquire, modify, and re-use exploit code. He also provides a refresher on Kali Linux and introduces techniques for testing web services. At the end of this course, you'll be prepared to take more advanced training, and to pursue the popular Offensive Security Certified Professional (OSCP) certification.
- Pen testing overview
- Pen testing tools
- Bash scripting
- Python scripting
- Kali and Metasploit
- Web testing
- Finding exploit code
Skill Level Intermediate
Ethical Hacking: Penetration Testingwith Lisa Bock1h 21m Intermediate
1. What is Pen Testing?
2. Pen Testing Tools
3. Bash Scripting
4. Python Scripting
5. Kali and Metasploit
6. Web Testing
7. Understanding Exploit code
What's next1m 27s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.