Web Application Vulnerabilities - Attacks on users

• The course is designed for developers and web application administrators who want to understand the attackers´ procedures during the web applications attacks. We will try out the procedures of attacks in which user accounts, login data and sessions are stolen on many practical examples. We will misuse requests submitted by the user and we will practice stealing and misusing each their click.
• We can also recommend the course to ordinary users with a basic knowledge of creating websites, who would like to learn about possible attacks that threaten them during normal surfing on the Internet. In this course, you will learn a lot of information on how to improve your web browsing safety habits to reduce your potential risks.
• The procedures discussed in this course are platform independent. You will apply the acquired knowledge in practice, regardless of which programming language you use to develop your application.

• Our unique course "Web Application Vulnerabilities 1 - Attacks against Users" will allow you to understand and, most importantly, try out the methods commonly used by attackers on practical examples. During the course, we will explain everything you need to know to defend against these security threats.

• Anyone with basic knowledge of HTML, CSS and Javascript can join the course.

• Expert interpretation with practical examples, practise on PC.

• Powerpoint handouts and module printouts.

• Introduction to HTTP protocol
• Introduction to Burp Suite platform
• Web Parameters Tampering / Hidden Fields

• User enumeration
• Authentication attacks / Guessing
• Captcha – usage and common mistakes
• Sensitive data in URL's
• Session Stealing
• Session Prediction
• Session Fixation
• Session Donation
• Cross-Site Cooking
• Cross-Subdomain Cooking
• Session Puzzling
• Insufficient Session Expiration
• Insufficient logout
• Logout action availabilty

• Cross-Site Request Forgery (CSRF)
• CSRF and GET / POST methods
• CSRF defense options 
• HTTP verb tampering
• Stealing clicks using clickjacking
• Filling in and sending forms using clickjacking
• Clickjacking defense options

• Cross-Site Scripting (XSS)
• Persistent XSS
• Reflected XSS
• DOM based XSS
• Blind XSS
• Self XSS
• Bypass code
• Javascript, vbscript & data protocols
• XSS and Content-Type settings
• Cross-Site Flashing
• Introduction to BeEF
• XSS defense options
• Too long cookie value
• HttpOnly flag
• Cross-Site Tracing
• Reflected HTTP Request Header
• Open Redirect
• HTTP Response Splitting (CRLF injection)
• HTTP Response Smuggling
• File Download via Open redirect
• Content Spoofing
• Cross-Site Messaging

• Refer data leak
• Data leakage during redirect
• CORS attacks
• JavaScript Hijacking
• Callback problems
• WWW-Authenticate attack
• Post & Back Attack
• Cross-site WebSocket hijacking

• Local storage attacks
• Websocket attacks
• Cache Poisoning
• HTTP Parameter Pollution
• Host Header Injection
• Path Relative StyleSheet Import (PRSSI)
• Misuse of a user to attack an intranet
• Reflected File Download
• CSV injection
• HTTP Response headers for a secure website

Previous courses

Networking - basic and security of web technologies [GOC217]

Next courses

Web Application Vulnerabilities - Attacks on servers [GOC542]

Web Applications Security Testing [GOC55]

Related courses

PHP – Scripting Language [INTPH1]

OSINT investigation [GOC60]

Network Security – Ethical Hacking [GOC3]