Seize the opportunity to gain new skills and reshape your career!

Choose a free learning path and get valuable insights from first-rate courses
watching now
4 Students
40 Lessons
Beginner

What Will You Learn?

  • How to detect bugs
  • How to become a white hat hacker
  • How to hack for profit

Curriculum

3h 59m
Section 1: Introduction
07:35
Section 2: Getting Familiar with Burp suite
17:42
Configuring Burp with your browser
03:18
Target, Proxy and Spider Tabs of Burp Suite
05:25
Spider, Intruder, Repeater and Decoder Tabs of Burp Suite
05:02
Wrapping Up Burp Suite
03:57
Section 3: Reconnaissance or Information Gathering
1:08:29
Gathering Information From the Headers
05:38
Gathering Information From Google Dorks (Theory)
07:22
Gathering Information From Google Dorks (Demo)
05:33
Analysing Public available files for juicy information
06:34
Looking for some Hidden Directories
04:26
Downloading the Source Code of the Website
05:27
Getting the information From WhatWeb
03:31
What is a SubDomain
05:20
Enumerating SubDomain
10:24
Using TheHarvester For Information Gathering
06:04
TheWayBackMachine
05:16
Vhosts Discovery
02:54
Section 4: Using nmap for information Gathering
27:26
Getting Familiar With Nmap
08:23
Different Type of Nmap Scans
05:50
Different Type of nmap Scans (Demo)
04:38
Banner Grabbing Using Nmap
04:05
Installing Your Test Enviornment
04:30
Section 5: Getting Started with Bug bounties
11:25
Robots.txt Demo
04:10
Bypassing Client Side Access Control
07:15
Section 6: Testing For Session Management
18:06
Testing For Cookies
09:17
Testing For Session Management
08:49
Section 7: Authorization Testing
16:29
Indirect Object Reference Vulnerability
04:22
Testing for Strict Transport Security
04:28
Directory Traversal
07:39
Section 8: Client Side Testing
24:47
Testing for Clickjacking
05:22
Exploiting clickjacking using Burp
03:39
Exploiting CORS
08:30
Testing for HTML injection
07:16
Section 9: Testing For Input Validation
18:04
XSS (Stored and Reflected)
12:08
Testing For SQL injection
05:56
Section 10: File Upload Vulnerabilities
13:48
Unrestricted File Upload
06:27
Bypassing Content Type header
04:13
Bypassing Blacklists
03:08
Section 11: Broken Authentication
09:19
Testing For Broken Authentication
09:19
Section 12: Unvalidated Redirects and Forwards
06:02
Unvalidated Redirects and Forwards
06:02

Description

Requirements

  • HTML/JS Basics(For XSS)
  • Some sort of web technologies like HTTP HTTPS etc.
  • Knowledge of Burp Suite

About the Instructor

Reviews 0
Students 43
Courses 5

Jitendra Kumar Singh is a senior InfoSec Instructor, bug bounty hunter, hacker, and security researcher. He has more than 5 years of experience in security auditing of Android applications and websites, and testing.

Throughout his career, he has reported nasty bugs to big companies, including Facebook, Google, Medium and others.

Jitendra Kumar Singh holds a Bachelor’s and Master’s degree, both in computer applications, including WebApp pentesting, mobile app pentesting, PHP, ASM.

Jitendra Kumar Singh has a passion for coding in PHP. He has also created some amazing projects who made this work easier. Talking about his free time, Jitendra loves to travel the world.

On BitDegree, you have an opportunity to improve your penetration testing and bug bounty hunting skills. Learning from Jitendra Kumar Singh, you will get a deep understanding of white-hat hacking and website security. Also, you will discover the best ways to earn money from that. So if you want to become a white-hat hacker or secure your website, take one of his courses and start learning today!

BitDegree platform reviews

Our students say Excellent
9.5 out of 10
trustpilot logo 1 trustpilot logo