As mentioned previously, I’m doing an online training course – Web Application Penetration Testing – from ELearnSecurity.
Module 10 – Common Vulnerabilities
Module 10 covers common vulnerabilities including some of the OWASP Top 10 Security Risks, plus a wide range of different security threats.
It covers the following:
- OWASP A4 – Insecure Direct Object Reference
- OWASP A8 – Failure to Restrict URL Access
- Path Traversal
- File Inclusion – including Local and Remote
- Unrestricted File Upload
- Clickjacking
- HTTP Response Splitting
- Header Injection
- Logic Flaws
- Denial of Service (DoS)