This is a brand new course that covers the most commonly used android security assessment tools. Android Security assessment can be done with great ease if you have good expertise in the right tools. This course includes 12 different tools in over 30 videos. The course covers the features of tools like apktool, androguard, androbugs, dex2jar, baksmali, JD-GUI, drozer, qark, frida, xposed, appmon and mobsf. At the end of the course you will be proficient at using these tools in your day to day android application security assessments.
The main objective of is to bring students up to speed with various security aspects of interfaces developed using JavaScript Model-View-Controller ideology. This course is in no way related to finding bypasses in the core frameworks, but more related to finding vulnerabilities in the applications developed by improper usage of these otherwise perfect frameworks. This is a deep dive course where the students will be building userscripts to dynamically hook into different templating engines to fuzz for Cross Site Scripting vulnerabilities.
WebSecNinja: Lesser Known WebAttacks is a brand new and unique web security course that takes the learner to the next level of web security. A perfect blend of latest and lesser known web attacks that are explained with ultimate details and accompanied by demos and how tos that you can apply in real world red-team pentesting and security assessments. The course curriculum is designed to include web attacks and techniques that are not much documented in books, courses and elsewhere.
Mobile Application market is growing like anything and so is the Mobile Security industry. With lots of frequent application releases and updates happening, conducting the security analysis of mobile applications becomes time consuming mainly because of the overheads in setting up and maintaining a mobile application testing environment. This course will introduce an extendable web framework called MobSF for Automated Security analysis of Mobile Applications.
Cross Site Scripting or XSS is still one of the most common injection vulnerability that exist in modern as well as legacy Web Applications. This course will teach XSS in-depth and even talk about the lesserknown derivatives of XSS called Mutation XSS (mXSS) and Relative Path Overwrite XSS (RPO XSS). If you are interested in learning about the different types of XSS, different context in XSS, and about real world red team XSS Exploitation, then this course is for you.
Node.js® is a platform built on Chrome’s JavaScript runtime for easily building fast, scalable network applications. Like any platform, Node.js has it’s on set of features that developers blindly use without much thought on security. The heart of Node is JavaScript, so it inherits most of the issues that are found at client side JavaScript. However on the server side, it executes on V8 JavaScript engine which gives node the capabilities similar to that of any other server side scripting languages.
This is a comprehensive course on Exploit Development in Windows platform. The course is designed in such a way to help the beginners. It will help you understand the different domains of software exploitation. The participants will learn about different types and techniques of exploitation, using debuggers to create their own exploits, understand protection mechanism of the Operating Systems and how to bypass them. You will also learn to write and execute exploits in latest Windows operating systems.
This is a brand new course that covers the most commonly used android security assessment tools. Android Security assessment can be done with great ease if you have good expertise in the right tools. This course includes 12 different tools in over 30 videos. The course covers the features of tools like apktool, androguard, androbugs, dex2jar, baksmali, JD-GUI, drozer, qark, frida, xposed, appmon and mobsf. At the end of the course you will be proficient at using these tools in your day to day android application security assessments.
WebSecNinja: Lesser Known WebAttacks is a brand new and unique web security course that takes the learner to the next level of web security. A perfect blend of latest and lesser known web attacks that are explained with ultimate details and accompanied by demos and how tos that you can apply in real world red-team pentesting and security assessments. The course curriculum is designed to include web attacks and techniques that are not much documented in books, courses and elsewhere.
Mobile Application market is growing like anything and so is the Mobile Security industry. With lots of frequent application releases and updates happening, conducting the security analysis of mobile applications becomes time consuming mainly because of the overheads in setting up and maintaining a mobile application testing environment. This course will introduce an extendable web framework called MobSF for Automated Security analysis of Mobile Applications.
Node.js® is a platform built on Chrome’s JavaScript runtime for easily building fast, scalable network applications. Like any platform, Node.js has it’s on set of features that developers blindly use without much thought on security. The heart of Node is JavaScript, so it inherits most of the issues that are found at client side JavaScript. However on the server side, it executes on V8 JavaScript engine which gives node the capabilities similar to that of any other server side scripting languages.
This is a brand new course that covers the most commonly used android security assessment tools. Android Security assessment can be done with great ease if you have good expertise in the right tools. This course includes 12 different tools in over 30 videos. The course covers the features of tools like apktool, androguard, androbugs, dex2jar, baksmali, JD-GUI, drozer, qark, frida, xposed, appmon and mobsf. At the end of the course you will be proficient at using these tools in your day to day android application security assessments.
The main objective of is to bring students up to speed with various security aspects of interfaces developed using JavaScript Model-View-Controller ideology. This course is in no way related to finding bypasses in the core frameworks, but more related to finding vulnerabilities in the applications developed by improper usage of these otherwise perfect frameworks. This is a deep dive course where the students will be building userscripts to dynamically hook into different templating engines to fuzz for Cross Site Scripting vulnerabilities.
WebSecNinja: Lesser Known WebAttacks is a brand new and unique web security course that takes the learner to the next level of web security. A perfect blend of latest and lesser known web attacks that are explained with ultimate details and accompanied by demos and how tos that you can apply in real world red-team pentesting and security assessments. The course curriculum is designed to include web attacks and techniques that are not much documented in books, courses and elsewhere.
Mobile Application market is growing like anything and so is the Mobile Security industry. With lots of frequent application releases and updates happening, conducting the security analysis of mobile applications becomes time consuming mainly because of the overheads in setting up and maintaining a mobile application testing environment. This course will introduce an extendable web framework called MobSF for Automated Security analysis of Mobile Applications.
Cross Site Scripting or XSS is still one of the most common injection vulnerability that exist in modern as well as legacy Web Applications. This course will teach XSS in-depth and even talk about the lesserknown derivatives of XSS called Mutation XSS (mXSS) and Relative Path Overwrite XSS (RPO XSS). If you are interested in learning about the different types of XSS, different context in XSS, and about real world red team XSS Exploitation, then this course is for you.
This is a comprehensive course on Exploit Development in Windows platform. The course is designed in such a way to help the beginners. It will help you understand the different domains of software exploitation. The participants will learn about different types and techniques of exploitation, using debuggers to create their own exploits, understand protection mechanism of the Operating Systems and how to bypass them. You will also learn to write and execute exploits in latest Windows operating systems.
New Courses
Android Security Tools Expert - ATX
XSSing JS-MVC Applications - XJA
WebSecNinja: Lesser Known WebAttacks - WSN
Automated Mobile Application Security Assessment - MAS
Cross Site Scripting (XSS) Attacks for Pentesters - XFP
Node.js Security: Pentesting and Exploitation - NJS
Windows Exploit Development Megaprimer - WXP
Featured Courses
Android Security Tools Expert - ATX
WebSecNinja: Lesser Known WebAttacks - WSN
Automated Mobile Application Security Assessment - MAS
Free Courses
Node.js Security: Pentesting and Exploitation - NJS
Paid Courses
Android Security Tools Expert - ATX
XSSing JS-MVC Applications - XJA
WebSecNinja: Lesser Known WebAttacks - WSN
Automated Mobile Application Security Assessment - MAS
Cross Site Scripting (XSS) Attacks for Pentesters - XFP
Windows Exploit Development Megaprimer - WXP
