Leader in the cybersecurity training sector.

Contact

EC-Council Web Application Hacking and Security (W|AHS) 

Catégorie
Satisfaction rate
4.8
Success rate
4.9

Description

Web Application Hacking and Security has challenges derived from the iLab environments of EC Council - from Certified Ethical Hacker (C|EH) to the Certified Penetration Testing Professional (C|PENT); from Certified Application Security Engineer (C|ASE) .Net to Java. But Web Application Hacking and Security goes beyond this to more difficult scenarios as you advance through each problem. 

Web Application Hacking and Security is like Capture-The-Flag (CTF) competitions meant to test your hacking skills. But you can keep on trying until you achieve the goal. Test your skills and work alone to solve complex problems or follow the instructor as he does walkthroughs to help you learn Web Application Hacking and Security

Target group

If you are tasked with implementing, managing, or protecting web applications, then this course is for you. If you are a cyber or tech professional who is interested in learning or recommending mitigation methods to a myriad of web security issues and want a pure hands-on program, then this is the course you have been waiting for.

Training Program

  • Duration : 5 days

You will learn about application vulnerabilities and web application hacking. Even though this will prove useful for other CTF contests, and in cracking VVMs, it will be even more useful to your career as you learn to defend your applications and progress to Web Application Hacking and Security.

  • Advanced Web Application Penetration Testing
  • Advanced SQL Injection (SQLi)
  • Reflected, Stored and DOM-based Cross Site Scripting (XSS)
  • Cross Site Request Forgery (CSRF) - GET and POST Methods
  • Server-Side Request Forgery (SSRF)
  • Security Misconfigurations
  • Directory Browsing/Bruteforcing
  • CMS Vulnerability Scanning
  • Network Scanning
  • Auth Bypass
  • Web App Enumeration
  • Dictionary Attack
  • Insecure Direct Object Reference Prevention (IDOR)
  • Broken Access Control
  • Local File Inclusion (LFI)
  • Remote File Inclusion (RFI)
  • Arbitrary File Download
  • Arbitrary File Upload
  • Using Components with
  • Known Vulnerabilities
  • Command Injection
  • Remote Code Execution
  • File Tampering
  • Privilege Escalation
  • Log Poisoning
  • Weak SSL Ciphers
  • Cookie Modification
  • Source Code Analysis
  • HTTP Header modification
  • Fixing session
  • Clickjacking

Goal

The EC-Council Web Application Hacking and Security (WAHS) course equips participants with hands-on skills to identify, exploit, and secure against critical web vulnerabilities such as SQL Injection, XSS, CSRF, SSRF, authentication bypass, IDOR, file inclusion, command injection, and privilege escalation. Delivered through challenge-based, CTF-style labs, it prepares learners to conduct realistic penetration tests under pressure while strengthening their ability to secure web applications. Successful candidates earn certification at three levels - Associate, Professional, or Expert - based on exam performance.

 

Recommended

  • Basic web/app knowledge, Linux/OS familiarity, scripting skills, for security professionals.
 
 

 

View the brochure for this training
  • Language : English
  • Level : Advanced
  • Certification body : EC-Council
  • Certification: Yes
  • Accessibility : Yes
  • Duration: 5 days
Contact us
Book Now

Important information:

Our courses are not registered with the Répertoire National des Certifications Professionnelles (RNCP), but they do comply with the requirements of the Répertoire Spécifique (RS).

Réserver l’événement

icône Form/calendar icon
icône Form/ticket icon
icône Form/up small icon icône Form/down small icon
Billets disponibles: Illimité
Le billet de "" est épuisé. Vous pouvez essayer un autre billet ou une autre date.

We use cookies to improve your experience. See our Cookie policy and our Privacy policy.

Information request

I would like more information about your training courses