A4 and A2: Broken Applications
OWASP
| Intermediate
- 13 videos | 1h 6m 11s
- Includes Assessment
- Earns a Badge
OWASP Top 10 list items 4 and 2 involve applications with broken access controls and broken authentication and session management.
WHAT YOU WILL LEARN
-
explain what Broken Access Control is
how Broken Access Control can be exploited and what kind of access is needed to exploit it
how easy it is to detect Broken Access Control and how common they are
the technical and business impacts of Broken Access Control
provide examples of Broken Access Control attacks
guess URLs and parameters to gain access to web pages and data
explain what Broken Authentication and Session Management is -
how Broken Authentication and Session Management can be exploited and what kind of access is needed to exploit it
how easy it is to detect Broken Authentication and Session Management and how common they are
the technical and business impacts of Broken Authentication and Session Management
provide examples of Broken Authentication and Session Management attacks
retrieve sensitive data through password reset pages
what an attacker can access if they exploit A4 or A2
IN THIS COURSE
-
5m 36s
-
8m 9s
-
3. A4 - Broken Access Control Detection5m 22s
-
4. A4 - Broken Access Control Impacts4m 44s
-
5. A4 - Broken Access Control Attacks7m 33s
-
6. A4 - Use Forced Browsing to Access Data2m 2s
-
7. A2 - Broken Authentication and Session Management4m 4s
-
8. A2 - Session Management Exploits5m 10s
-
9. A2 - Session Management Vulnerability Detection5m 47s
-
10. A2 -Session Management Impacts4m 7s
-
11. A2 - Session Management Attacks5m 17s
-
12. A2 - Exploit Password Reset Pages2m 42s
-
13. Exercise: What Can An Attacker Do With A4 and A25m 38s
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.
Digital badges are yours to keep, forever.
