Hands-on Experience

Gain practical skills through real-world scenarios and projects.

Expert Guidance

Learn from industry professionals with years of experience in cybersecurity.

Career Advancement

Boost your career opportunities with in-demand skills in web application security.

About the Course

Welcome to the Master Web Application Security Testing course! Are you ready to dive deep into the world of cybersecurity and learn how to protect web applications from potential threats? This course is designed to equip you with the knowledge and skills needed to identify vulnerabilities, perform security assessments, and secure web applications effectively. Join us on this journey to become a cybersecurity expert and safeguard digital assets.

About the Creator

Bonjour! I'm thrilled to share my expertise in Web Application Security Testing with you. As a seasoned cybersecurity professional, I've faced numerous challenges in the field and am passionate about helping others navigate the complex world of cybersecurity. My goal is to empower you with the skills and confidence to tackle cybersecurity threats head-on. Let's embark on this learning adventure together!

Course Curriculum

16 Chapters · 50 Lessons

  1. 1

    Introduction à la Sécurité des Applications Web

    1. (Included in full purchase)

      Vue d'Ensemble des Tests de Sécurité

  2. 2

    Outils de Test de Sécurité

    1. (Included in full purchase)

      Analyse avec Burp Suite

  3. 3

    Techniques de Test

    1. (Included in full purchase)

      Exploitation des Vulnérabilités

  4. 4

    Stratégies de Remédiation

    1. (Included in full purchase)

      Gestion des Risques

  5. 5

    Mise en Pratique et Études de Cas

    1. (Included in full purchase)

      Création d'un Rapport de Sécurité

  6. 6

    Chapitre 00 - Introduction et Lab

    1. (Included in full purchase)

      Pr sentation du cours et cosyst me s curit web

    2. (Included in full purchase)

      Installer le lab : DVWA, Juice Shop, WebGoat

    3. (Included in full purchase)

      Burp Suite Community : premi re prise en main

  7. 7

    Chapitre 01 - OWASP Top 10 et Methodologie

    1. (Included in full purchase)

      OWASP Top 10 expliqu (chaque cat gorie)

    2. (Included in full purchase)

      M thodologie : recon, mapping, attack, exploit

    3. (Included in full purchase)

      Burp Suite Pro : Repeater, Intruder, Scanner

    4. (Included in full purchase)

      Cr er ses extensions Burp en Python (Jython)

  8. 8

    Chapitre 02 - Injections SQL NoSQL Command

    1. (Included in full purchase)

      SQL injection classique (UNION, error-based)

    2. (Included in full purchase)

      Blind SQLi : boolean-based et time-based

    3. (Included in full purchase)

      sqlmap : automatisation et options avanc es

    4. (Included in full purchase)

      NoSQL injection (MongoDB) et command injection

  9. 9

    Chapitre 03 - XSS Cross-Site Scripting

    1. (Included in full purchase)

      Reflected, stored, DOM-based XSS

    2. (Included in full purchase)

      Bypass de filtres et WAF (encodings, polyglotes)

    3. (Included in full purchase)

      Exploitation : cookies, sessions, BeEF

    4. (Included in full purchase)

      Mitigations : CSP, sanitization, frameworks modernes

  10. 10

    Chapitre 04 - CSRF SSRF et Server-Side Request

    1. (Included in full purchase)

      CSRF : token, SameSite, double-submit

    2. (Included in full purchase)

      SSRF basique et exploitation

    3. (Included in full purchase)

      SSRF vers metadata cloud (AWS IMDSv1)

    4. (Included in full purchase)

      DNS rebinding et bypass des filtres SSRF

  11. 11

    Chapitre 05 - Authentification et Sessions

    1. (Included in full purchase)

      Brute force intelligent (Burp Intruder, Hydra)

    2. (Included in full purchase)

      JWT : alg=none, faiblesses cryptographiques, kid injection

    3. (Included in full purchase)

      OAuth 2.0 et OpenID : misconfigurations courantes

    4. (Included in full purchase)

      IDOR et acc s direct aux ressources

  12. 12

    Chapitre 06 - API Security REST et GraphQL

    1. (Included in full purchase)

      OWASP API Security Top 10

    2. (Included in full purchase)

      BOLA et broken function level authorization

    3. (Included in full purchase)

      GraphQL : introspection, batching, query depth attacks

    4. (Included in full purchase)

      Mass assignment et excessive data exposure

  13. 13

    Chapitre 07 - Vulnerabilites Modernes

    1. (Included in full purchase)

      Deserialization : PHP, Java, Python pickle

    2. (Included in full purchase)

      Prototype pollution Node.js

    3. (Included in full purchase)

      SSTI : Jinja2, Twig, Freemarker

    4. (Included in full purchase)

      HTTP request smuggling et cache poisoning

  14. 14

    Chapitre 08 - Bug Bounty et Reporting

    1. (Included in full purchase)

      Plateformes de bug bounty et choix de programme

    2. (Included in full purchase)

      M thodologie de chasse efficace

    3. (Included in full purchase)

      R diger un rapport accept (impact, repro, mitigation)

  15. 15

    Chapitre 09 - Projet Final Audit Complet

    1. (Included in full purchase)

      Pr sentation du projet et p rim tre

    2. (Included in full purchase)

      Reconnaissance et mapping de l'application

    3. (Included in full purchase)

      Exploitation des vuln rabilit s identifi es

    4. (Included in full purchase)

      R daction du rapport et recommandations

  16. 16

    Chapitre 10 - Activites et Evaluations

    1. (Included in full purchase)

      Quiz 1 – OWASP Top 10 et m thodologie – 5%

    2. (Included in full purchase)

      Quiz 2 – Injections et XSS – 5%

    3. (Included in full purchase)

      Évaluation de mi-session – 25%

    4. (Included in full purchase)

      Quiz 3 – API et vuln rabilit s modernes – 5%

    5. (Included in full purchase)

      Projet tudiant – 20%

    6. (Included in full purchase)

      Évaluation finale – 40%

    7. (Included in full purchase)

      Guide complet du projet final

Student Testimonials

Discover how this course has transformed the careers of our students and empowered them to excel in the field of cybersecurity.

Text-only testimonials are quick to scan and can highlight the value of your product at a glance.
Jessica L.

Las Vegas, NV

The combination of text and imagery make the testimonial feel more personal and credible.
Ashley T.

Working mom

Finally, a handbook that makes photography feel simple! It covers everything from camera settings to post-processing in a way that actually makes sense.
Anna W.

Amateur photographer

Ready to Secure the Web?

Join now and unlock a world of opportunities in cybersecurity. Take the first step towards becoming a certified Web Application Security Testing professional!

$99.00

Enroll Now