Learn Bug Bounty Hunting & Web Security Testing From Scratch Course
Learn how to discover bugs / vulnerabilities like experts | OWASP top 10 + more | No prior knowledge required.
This Learn Bug Bounty Hunting & Web Security Testing From Scratch Course is a comprehensive guide to bug hunting and web security testing. It is designed to take you from a beginner to an advanced level in bug hunting and web security testing. The course is created by Zaid Sabih and z Security and has been rated 4.8 out of 5 stars by over 1,175 students.
The Learn Bug Bounty Hunting & Web Security Testing From Scratch Course consists of over 95 videos that cover topics such as HTTP methods & status codes, cookies & cookie manipulation, HTML basics for bug hunting, XML basics for bug hunting, Javascript basics for bug hunting, reading & analyzing headers, requests and responses, information disclosure vulnerabilities, broken access control vulnerabilities, path / directory traversal vulnerabilities, CSRF vulnerabilities, IDOR vulnerabilities, OAUTH 2.0 vulnerabilities, injection vulnerabilities (Command Injection, HTML Injection, XSS (Reflected, Stored & DOM), SQL Injection (Blind SQL Injection & Time-based blind SQL Injection), SSRF vulnerabilities (blind SSRF), XXE vulnerabilities), and more.
You will also learn how to discover bugs / vulnerabilities like experts and bypass filters & security on all of the covered bugs & vulnerabilities. You will have access to 80+ hands-on real-life examples – from simple to advanced – and a 2-hour LIVE bug hunt / pentest on a real web application at the end of the course.
The course is designed for anyone with basic IT skills; no prior knowledge in bug hunting, hacking or programming is required. The course requires a computer with a minimum of 4GB RAM/memory running Windows / OS X / Linux.
What you’ll learn in Learn Bug Bounty Hunting & Web Security Testing From Scratch Course
- 95+ videos to teach you bug hunting & security testing from scratch.
- 80+ hands-on real-life examples – from simple to advanced.
- Discover the most common web application bugs and vulnerabilities.
- Discover bugs from the OWASP top 10 most common security threats.
- Bypass filters & security on all of the covered bugs & vulnerabilities.
- 2 Hour LIVE bug hunt / pentest on a real web application at the end of the course.
- My approach to bug hunting and web application penetration testing.
- The bug hunter / hacker mentality.
- Efficiency use Burp Suite to discover bugs and vulnerabilities.
- Discover sensitive & hidden information, paths, files, endpoints and subdomains.
- Gather information about websites & applications.
- Essential topics to bounty hunting.
- HTTP methods & status codes.
- Cookies & cookie manipulation
- HTML basics for bug hunting.
- XML basics for bug hunting.
- Javascript basics for bug hunting.
- Read & analyse headers, requests and responses.
- Discover information disclosure vulnerabilities.
- Discover broken access control vulnerabiltiies.
- Discover path / directory traversal vulnerabilities.
- Discover CSRF vulnerabilities.
- Discover IDOR vulnerabilities.
- Discover OAUTH 2.0 vulnerabilities.
- Discover Injection vulnerabilities.
- Discover Command Injection vulnerabilities.
- Discover HTML Injection vulnerabilities.
- Discover XSS vulnerabilities (Reflected, Stored & DOM).
- Advanced XSS discovery & bypass techniques
- Discover SQL Injection vulnerabilities.
- Discover Blind SQL Injection vulnerabilities.
- Discover Time-based blind SQL Injection vulnerabilities.
- Discover SSRF vulnerabilities.
- Discover blind SSRF vulnerabilities.
- Discover XXE vulnerabilities.
- The Burp Suite Proxy.
- The Burp Suite Repeater.
- The Burp Suite Filter
- The Burp Suite Intruder.
- The Burp Suite Collaborator.
Recommended Course you must take