Practical Web Hacking and Exploitation
- 發布單位:TWCERT/CC
- 更新日期:2020-01-02
- 點閱次數:842
TRAINING WINTER 2019| 標題 | Practical Web Hacking and Exploitation |
|---|---|
| 活動類型 | 訓練課程 |
| 費用 | 付費 |
| 活動日期 | |
| 地址定位 |
【Practical Web Hacking and Exploitation】
主辦單位:台灣駭客協會 Hacks in Taiwan Association | CHROOT Security Group
會議地點:台北市境內,如已達開課人數標準,主辦單位將儘快公布地點。
日期:2019 年 12 月 17 日 - 2019 年 12 月 18 日 (二天)
上課時間:09:30 - 12:30, 14:00 - 17:00
講師:Boik Su
票價:NTD 33,000
- 課程介紹(Course Description)
This course will focus on advanced vulnerability identification and exploitation techniques and allow attendees to get familiar with some tricky but decent ways that were actually used and exploited in the real world.
Several hands-on practices demonstrating different possible scenarios will be given while we go through the course. Hence, attendees will gain experience when trying their best to carry out the attack they just learned.
There will be some new techniques shown during the course exclusively, which can give attendees insight into the problems of vulnerability.
- 課程摘要(Course Outline)
OWASP TOP 10 - 2017 hands-on practices with real-world cases (XSS, SQLi, etc)
Neat and novel exploitation techniques in recent conferences (BlackHat, Defcon, etc)
How to defend against malicious payloads?
Talking about traditional and innovative detection methodology
- 學員先修技能(Prerequisite Skills for the Course)
Of the course:
Understanding of basic concepts of HTML and JavaScript
Know how an HTTP request or response flows
Of the tools or extensions used in the course:
Docker
Burp Suite
Of who wanna learn more from the course:
Experience in developing any website
Experience in any front-end framework
- 學員自備工具(Equipments & Tools Need to Bring)
學員自備筆電,並準備以下需求:
Ubuntu 環境(14、16、18 皆可)
安裝好 Docker, Burp Suite 跟 Firefox ESR 52