- Course
Web Application Penetration Testing: Client-side Testing
Do not let hackers execute different client-side attacks on your website. This course will teach you how to be proficient in performing client-side attacks like Cross Site Scripting, HTML Injection, Client-side redirects, and explain how to fix them.
Intermediate
- Course
Web Application Penetration Testing: Client-side Testing
Do not let hackers execute different client-side attacks on your website. This course will teach you how to be proficient in performing client-side attacks like Cross Site Scripting, HTML Injection, Client-side redirects, and explain how to fix them.
Intermediate
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Security
What you'll learn
Hackers are getting access to your sensitive data by exploiting client-side vulnerabilities. In this course, Web Application Penetration Testing: Client-side Testing, you will gain the ability to perform different client-side attack techniques. First, you will learn Cross-Site Scripting (XSS) attacks. Next, you will discover how to test for HTML injection and URL redirects. Finally, you will learn how to test for Clickjacking attacks, testing local, and session storage. When you’re finished with this course, you will have the skills and knowledge of client-side testing needed to perform web application penetration testing and mitigate those attacks.
Web Application Penetration Testing: Client-side Testing
Intermediate
Table of contents
-
Introduction | 6m 5s
-
Stored XSS | 1m 50s
-
Demo: Stored XSS | 4m 25s
-
Reflected Cross Site Scripting | 1m 52s
-
Demo: Reflected Cross Site Scripting | 5m 41s
-
Mitigations of Stored and Reflected XSS | 2m 38s
-
DOM XSS and JavaScript Execution | 3m 16s
-
Demo: DOM XSS | 4m 53s
-
Mitigations DOM XSS | 1m 11s
-
Summary | 1m 7s
Prasad is an Application Security Consultant with primary focus on providing services across the Secure Development Life cycle, Application Security and Penetration Testing spectrum. He is a part time bug bounty hunter.