Ethic Ninja · Cybersecurity Services

Web Application Pentester Course (WAPC)

Beginner to intermediate training on real-world web attack and defense techniques.

Consult (WhatsApp) Contact Us

Participants receive a dedicated portal for modules and lab files. The course is 80% hands-on, progressing by difficulty. Delivery: public, private, and in-house sessions.

Prerequisites

Own laptop, basic web programming knowledge, and familiarity with Linux command line.

Modules

  1. Introduction to penetration testing
  2. Lab setup & tools
  3. HTTP fundamentals
  4. Reconnaissance & fingerprinting
  5. HTTP verb tampering
  6. HTTP authentication attacks
  7. HTML injection
  8. iFrame injection
  9. LDAP injection
  10. Mail header injection
  11. OS command injection
  12. PHP code injection
  13. Cookies & sessions
  14. XSS
  15. CSRF
  16. XSS + CSRF chains
  17. SQL injection (incl. SQLMap & WAF evasion)
  18. File upload bypasses
  19. RFI
  20. LFI
  21. PHP meterpreter
  22. Heartbleed
  23. BEAST/CRIME/BREACH
  24. POODLE

Get in Touch

Email info@ethic.ninja · WhatsApp +62 821-3000-1337 · Contact page