You played CTFs, learned some web application hacking tricks and maybe even dabbled in bug bounty hunting. That’s a great start. But do you use a proper methodology, work on a real-world, live web application, or even know what will be expected of you as a member of a penetration testing team delivering paid services for clients? In “Web App Pentesting – Jr Analyst”:
You Will!
That’s what sets this course apart. Mike Lisi, Founder of Maltek Solutions and President of the Red Team Village, has taken the JHT philosophy of preparing students for the job and did what we only hear about on the interwebs… created an apprenticeship!
This is the first of 3 planned courses and other ancillary training items including a gift to the entire cybersec community… a publicly available vulnerable web app open to ALL! This is the learning path we call “The Penetration Testing Apprenticeship: Web Application Security Mastery”. This path is not about learning some cool hacking tricks (although you will learn plenty of those). It has a much greater purpose: to prepare you for the penetration testing profession for a long-term career. For more details, see the Course Overview in the Free Previews.
Price = $80 $100 20% Launch Discount
**Launch Discount Ends Midnight ET May 31**
See for Yourself!
Free Previews & a Live Demo:
๐ Course Overview
๐ Anatomy of a Web Application
๐ป 1.1 Search Engine Discovery (WSTG-INFO-01)
Our Gift to the Community!
During this and future course in this series, you’ll be working with a single client: CrossWind Systems Corporation. This is a fictitious technology company created for this course, and the engagement is structured like a real pentesting engagment. Their entire online presence, vulnerabilities and all, has been made available for all!
If you would like to play with a live, purposely vulnerable web app, have at it. Prefer more structured, curriculum-based training, then this course is for you!
What will I learn in Web App Pentesting – Jr Analyst?
๐ Welcome Future Web App Pentester!
0๏ธโฃ Introduction & Setup
1๏ธโฃ Passive Information Gathering
2๏ธโฃ Active Reconnaissance & Mapping
3๏ธโฃ Configuration Testing
4๏ธโฃ Authentication Testing
5๏ธโฃ Session Management & Error Handling
6๏ธโฃ Bringing it Together (With Final Capstone Challenge!)
What This Course Actually Prepares You For
First, some honesty: this course doesn’t make you a lead penetration tester or senior consultant (that’s for courses 2 and 3 respectively in this series ๐). But what it does do is prepare you to be immediately useful on a penetration testing team. When consulting firms hire entry-level security professionals, they need people who can handle specific, well-defined portions of an assessment while senior team members focus on complex vulnerabilities, exploitation and client communication.
What is the format of Web App Pentesting – Jr Analyst?
Get ready for a truly unique learning experience…
The material is presented in written form, and you are required to pass quizzes after each learning “Session”. But before you can continue, you are assigned actual work tasks by your team!
You get to practice what you’re taught using a provided, web-based VM of the latest version of Kali Linux. Since the client’s web apps are publicly available, you can use your own tools. The option is yours!
As you complete your “work”, you are reminded of the importance of taking notes. This becomes vastly important, because your team needs you. Therefore, you are required to “Report to the Team” regularly… just as the job would require!
Prerequisites for Web App Pentesting – Jr Analyst
Experience with networking and cybersecurity concepts is preferred. This course is absolutely appropriate for beginners to securing web apps! The course starts off very gently and builds from there.
Because most tools are Linux-based, experience on the Linux command line is preferred. Familiarity with virtual machines is a plus.
