watching now
2 Students
40 Lessons
Beginner

What You Will Learn?

  • How to detect bugs
  • How to become a white hat hacker
  • How to earn while browsing

Curriculum

3h 59m
Section 1: Introduction
07:35
Section 2: Getting Familiar with Burp suite
17:42
Configuring Burp with your browser
03:18
Target, Proxy and Spider Tabs of Burp Suite
05:25
Spider, Intruder, Repeater and Decoder Tabs of Burp Suite
05:02
Wrapping Up Burp Suite
03:57
Section 3: Reconnaissance or Information Gathering
1:08:29
Gathering Information From the Headers
05:38
Gathering Information From Google Dorks (Theory)
07:22
Gathering Information From Google Dorks (Demo)
05:33
Analysing Public available files for juicy information
06:34
Looking for some Hidden Directories
04:26
Downloading the Source Code of the Website
05:27
Getting the information From WhatWeb
03:31
What is a SubDomain
05:20
Enumerating SubDomain
10:24
Using TheHarvester For Information Gathering
06:04
TheWayBackMachine
05:16
Vhosts Discovery
02:54
Section 4: Using nmap for information Gathering
22:56
Getting Familiar With Nmap
08:23
Different Type of Nmap Scans
05:50
Different Type of nmap Scans (Demo)
04:38
Banner Grabbing Using Nmap
04:05
Section 5: Getting Started with Bug bounties
20:23
Installing Your Test Enviornment
04:30
Testing for Strict Transport Security
04:28
Robots.txt Demo
04:10
Bypassing Client Side Access Control
07:15
Section 6: Testing For Session Management
18:06
Testing For Cookies
09:17
Testing For Session Management
08:49
Section 7: Authorization Testing
12:01
Indirect Object Reference Vulnerability
04:22
Directory Traversal
07:39
Section 8: Client Side Testing
24:47
Testing for Clickjacking
05:22
Exploiting clickjacking using Burp
03:39
Exploiting CORS
08:30
Testing for HTML injection
07:16
Section 9: Testing For Input Validation
18:04
XSS (Stored and Reflected)
12:08
Testing For SQL injection
05:56
Section 10: File Upload Vulnerabilities
13:48
Unrestricted File Upload
06:27
Bypassing Content Type header
04:13
Bypassing Blacklists
03:08
Section 11: Broken Authentication
09:19
Testing For Broken Authentication
09:19
Section 12: Unvalidated Redirects and Forwards
06:02
Unvalidated Redirects and Forwards
06:02

Description

Requirements

  • HTML/JS Basics(For XSS)
  • Some sort of web technologies like HTTP HTTPS etc.
  • Knowledge of Burp Suite

About the Instructor

91.8% of students rated this instructor as excellent!
Reviews 0
Students 28
Courses 5

I am a full-time bug bounty hunter in virtual life and quite a shy person in personal life. I am a security Ninja with about 5 years of experience in testing, security auditing of website and android applications

I reported about 150+ bugs to different companies like Google, Facebook, Medium etc.

I love coding in PHP and I have created some cool projects which ease my day to day work.
And when I am not doing these things I love to travel the world.

BitDegree platform reviews

Our students say Excellent
9.5 out of 10
trustpilot logo 1 trustpilot logo