The Web Application Penetration Testing course is a hands-on learning experience. Every lecture is directly followed up by a comprehensive lab exercise (we also set up and provide lab workstations so you don’t waste valuable class time installing tools and apps).
Typical lab exercises consist of a real-world application that demonstrates a vulnerability commonly found in a web application. You learn how to assess the application much as a black hat hacker would, exploit the application so that you can demonstrate the true risk of the vulnerability to the application owner. This can involve taking control of the application itself, downloading data the application stores, or potentially using the application as a launching pad to attack unsuspecting visitors with a malicious script. At the end you learn how to prepare a VAPT report.