Course 27 - Hacking Web Applications, Penetration Testing, CTF | Episode 16: Web Technology Foundations: Protocols, Structure, and Scripting
No se pudo agregar al carrito
Solo puedes tener X títulos en el carrito para realizar el pago.
Add to Cart failed.
Por favor prueba de nuevo más tarde
Error al Agregar a Lista de Deseos.
Por favor prueba de nuevo más tarde
Error al eliminar de la lista de deseos.
Por favor prueba de nuevo más tarde
Error al añadir a tu biblioteca
Por favor intenta de nuevo
Error al seguir el podcast
Intenta nuevamente
Error al dejar de seguir el podcast
Intenta nuevamente
Course 27 - Hacking Web Applications, Penetration Testing, CTF | Episode 16: Web Technology Foundations: Protocols, Structure, and Scripting
-
Narrado por:
-
De:
- Core web technologies and protocols, and how they directly impact web application security and penetration testing methodologies.
- Hypertext Transfer Protocol (HTTP) fundamentals, including:
- Its stateless, request–response architecture
- The evolution from HTTP/1.0 to HTTP/3
- Common request methods such as GET and POST
- Status code classes (1xx–5xx) and what they reveal about server behavior
- HTTP headers and session management, understanding how cookies maintain state and how security headers help mitigate attacks:
- Content Security Policy (CSP)
- HTTP Strict Transport Security (HSTS)
- Uniform Resource Identifiers (URIs), breaking down their structure to understand how resources are located and how parameters may introduce security risks.
- HTML structure, including:
- Tags and document layout
- The risks of exposed HTML comments
- Security considerations around login forms and input handling
- CSS, and how styling integrates with page rendering without directly providing logic control.
- Client-side and server-side scripting languages, including:
- JavaScript for browser interactivity
- PHP for backend processing
- Python and PowerShell for automation, scripting, and tool development in security testing
- Practical enumeration techniques, using tools such as:
- Burp Suite to inspect headers and manipulate requests
- Nmap to identify allowed HTTP methods
- Metasploit for service interaction and validation
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy
Todavía no hay opiniones