OWASP Top 10: A4 - XML External Entities
OWASP | Intermediate
- 7 videos | 31m 48s
- Includes Assessment
- Earns a Badge
Extensible Markup Language uses tags to describe data and has become the standard information exchange format between dissimilar systems. Many applications use XML to share and manage data. In this course, you'll begin with an XML overview, including document type definitions and how XML differs from HTML. Next, you'll learn what XML external entity attacks are. Moving on, you'll examine how the OWASP ZAP tool can scan a vulnerable web application and identify weaknesses. Next, you'll explore how to scan a web app for XXE vulnerabilities and execute an XXE attack. Lastly, you'll learn how to mitigate XXE attacks.
WHAT YOU WILL LEARN
Discover the key concepts covered in this courseIdentify how extensible markup language (xml) is used to describe dataList various ways that xml attacks can be executedScan a web application for xml vulnerabilities
Execute an xml external entity attackDescribe how to mitigate xxe attacksSummarize the key concepts covered in this course
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.Digital badges are yours to keep, forever.
YOU MIGHT ALSO LIKE
Rating 4.6 of 344 users (344)
Rating 4.6 of 185 users (185)
Course OWASP Top 10: A1 - Injection
Rating 4.6 of 119 users (119)