按 Enter 到主內容區
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心

:::

Practical Web Hacking and Exploitation

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2020-01-02
  • 點閱次數:146
TRAINING WINTER 2019TRAINING WINTER 2019
標題 Practical Web Hacking and Exploitation
活動類型 訓練課程
費用 付費
活動日期 2019-12-17
地址定位

 

Practical Web Hacking and Exploitation

主辦單位:台灣駭客協會 Hacks in Taiwan Association | CHROOT Security Group

會議地點:台北市境內,如已達開課人數標準,主辦單位將儘快公布地點。

日期:2019 年 12 月 17 日 - 2019 年 12 月 18 日 (二天)

上課時間:09:30 - 12:30, 14:00 - 17:00

講師:Boik Su  

票價:NTD 33,000

  • 課程介紹(Course Description)

This course will focus on advanced vulnerability identification and exploitation techniques and allow attendees to get familiar with some tricky but decent ways that were actually used and exploited in the real world.
Several hands-on practices demonstrating different possible scenarios will be given while we go through the course. Hence, attendees will gain experience when trying their best to carry out the attack they just learned.
There will be some new techniques shown during the course exclusively, which can give attendees insight into the problems of vulnerability.

  • 課程摘要(Course Outline)

OWASP TOP 10 - 2017 hands-on practices with real-world cases (XSS, SQLi, etc)
Neat and novel exploitation techniques in recent conferences (BlackHat, Defcon, etc)
How to defend against malicious payloads?
Talking about traditional and innovative detection methodology

  • 學員先修技能(Prerequisite Skills for the Course)

Of the course:

Understanding of basic concepts of HTML and JavaScript

Know how an HTTP request or response flows

Of the tools or extensions used in the course:

Docker

Burp Suite

Of who wanna learn more from the course:

Experience in developing any website

Experience in any front-end framework

  • 學員自備工具(Equipments & Tools Need to Bring)

學員自備筆電,並準備以下需求:
Ubuntu 環境(14、16、18 皆可)
安裝好 Docker, Burp Suite 跟 Firefox ESR 52

回頁首