🚨 Time is Running Out: Reserve Your Spot in the Lucky Draw & Claim Rewards! START NOW
watching now
2 Students

Description

What Will You Learn?

  • How to detect bugs
  • How to become a white hat hacker
  • How to hack for profit

Requirements

  • HTML/JS Basics(For XSS)
  • Some sort of web technologies like HTTP HTTPS etc.
  • Knowledge of Burp Suite
  • NFT Certificate
  • 41 Lessons
  • Beginner
  • English
  • 3.7 Rating
  • +100 XP

Share Course on Social media

Curriculum

Course consist of total 3h 59min of content, in total.

Section 1: Introduction
07:35
Section 2: Getting Familiar with Burp suite
17:42
Configuring Burp with your browser
03:18
Target, Proxy and Spider Tabs of Burp Suite
05:25
Spider, Intruder, Repeater and Decoder Tabs of Burp Suite
05:02
Content Discovery Using Burp Suite
00:00
Wrapping Up Burp Suite
03:57
Section 3: Reconnaissance or Information Gathering
1:08:29
Gathering Information From the Headers
05:38
Gathering Information From Google Dorks (Theory)
07:22
Gathering Information From Google Dorks (Demo)
05:33
Analysing Public available files for juicy information
06:34
Looking for some Hidden Directories
04:26
Downloading the Source Code of the Website
05:27
Getting the information From WhatWeb
03:31
Enumerating SubDomain
10:24
Using TheHarvester For Information Gathering
06:04
What is a SubDomain
05:20
TheWayBackMachine
05:16
Vhosts Discovery
02:54
Section 4: Using nmap for information Gathering
27:26
Getting Familiar With Nmap
08:23
Different Type of Nmap Scans
05:50
Different Type of nmap Scans (Demo)
04:38
Banner Grabbing Using Nmap
04:05
Installing Your Test Enviornment
04:30
Section 5: Getting Started with Bug bounties
11:25
Robots.txt Demo
04:10
Bypassing Client Side Access Control
07:15
Section 6: Testing For Session Management
18:06
Testing For Cookies
09:17
Testing For Session Management
08:49
Section 7: Authorization Testing
16:29
Indirect Object Reference Vulnerability
04:22
Testing for Strict Transport Security
04:28
Directory Traversal
07:39
Section 8: Client Side Testing
24:47
Testing for Clickjacking
05:22
Exploiting clickjacking using Burp
03:39
Exploiting CORS
08:30
Testing for HTML injection
07:16
Section 9: Testing For Input Validation
18:04
XSS (Stored and Reflected)
12:08
Testing For SQL injection
05:56
Section 10: File Upload Vulnerabilities
13:48
Unrestricted File Upload
06:27
Bypassing Content Type header
04:13
Bypassing Blacklists
03:08
Section 11: Broken Authentication
09:19
Testing For Broken Authentication
09:19
Section 12: Unvalidated Redirects and Forwards
06:02
Unvalidated Redirects and Forwards
06:02

About the Instructor

Jitendra Kumar Singh is a senior InfoSec Instructor, bug bounty hunter, hacker, and security researcher. He has more than 5 years of experience in security auditing of Android applications and websites, and testing.

Throughout his career, he has reported nasty bugs to big companies, including Facebook, Google, Medium and others.

Jitendra Kumar Singh holds a Bachelor’s and Master’s degree, both in computer applications, including WebApp pentesting, mobile app pentesting, PHP, ASM.

Jitendra Kumar Singh has a passion for coding in PHP. He has also created some amazing projects who made this work easier. Talking about his free time, Jitendra loves to travel the world.

On BitDegree, you have an opportunity to improve your penetration testing and bug bounty hunting skills. Learning from Jitendra Kumar Singh, you will get a deep understanding of white-hat hacking and website security. Also, you will discover the best ways to earn money from that. So if you want to become a white-hat hacker or secure your website, take one of his courses and start learning today!

See All Instructor Courses

BitDegree platform reviews