CEH v12: Web App Hacking Methodology, CSRF Attacks, and Input Filter Evasion

CEH v12 | Intermediate

3 videos | 1h 8m 29s
Includes Assessment
Earns a Badge

Common attack vectors such as cross-site scripting are becoming more difficult to exploit due to the implementation of defenses. The key to success when security testing a web application is making sure you have an effective plan. In this course, you'll explore the common web app hacking methodology, as described by EC-Council. Next, you'll learn how the tools you have at your disposal will be crucial to your success when testing the security of any web application. You'll examine how CSRF attacks work, how to recognize them, and how to evade input filters to gain cross-site scripting (XSS) execution. This course is one in a series that helps to prepare you for the Certified Ethical Hacker v12 (312-50) exam.

WHAT YOU WILL LEARN

Recognize the common web app hacking methodology

recognize the purpose of the web app hacking methodology steps

identify the stages of the web app hacking methodology

Recognize how cross site request forgery (csrf) attacks work
identify how cross site request forgery (csrf) attacks can be leveraged by attackers

Describe techniques used to evade input filters to gain cross-site scripting (xss) execution

identify evasion techniques used to evade input filters

recognize techniques used to evade input filters to gain cross-site scripting (xss) execution

IN THIS COURSE

1. Web App Hacking Methodology

24m 8s

After completing this video, you will be able to recognize the common web app hacking methodology as described by EC-Council. FREE ACCESS
2. Cross-Site Request Forgery (CSRF) Attacks

25m 25s

Upon completion of this video, you will be able to recognize how Cross-Site Request Forgery (CSRF) attacks work and how they can be leveraged to attack users. FREE ACCESS
3. Input Filtering Evasion

18m 57s

After completing this video, you will be able to recognize how to evade input filters to gain cross-site scripting (XSS) execution. FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.

Digital badges are yours to keep, forever.

Course CEH v12: Cybersecurity Concepts, Attacks, and Information Warfare

(2)

Course CEH v12: Hijacking Concepts and Countermeasures

Course CEH v12: IDOR Attacks, File Inclusion Attacks, Web APIs, and Webhooks

Get Started

Sharpen your skills. Upgrade your career. Find the right learning path for you, based on your role and skills. Take part in hands-on practice, study for a certification, and much more - all personalized for you.

*Not included: Compliance, Leadership Development Program content, and Engineering books

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

Explore a world of live learning with Global Knowledge

Choose from convenient delivery formats to get the training you and your team need - where, when and how you want it.

Browse Live Learning

IT Skills & Salary Report

ESG Impact Report

CEH v12: Web App Hacking Methodology, CSRF Attacks, and Input Filter Evasion

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE