Hands-On API, CSRF, GraphQL, LLM & Web Exploitation Using Burp Suite
Sub Category
- Network & Security
{inAds}
Objectives
- Use Burp Suite effectively for real-world bug bounty and ethical hacking engagements
- Analyze and manipulate HTTP requests and responses to identify application logic flaws
- Discover and exploit API vulnerabilities, including unused endpoints, mass assignment, and server-side parameter pollution
- Perform security testing on LLM and AI-powered APIs, including excessive agency and indirect prompt injection attacks
- Identify and exploit CSRF vulnerabilities, including token misconfigurations and SameSite bypass techniques
- Execute advanced clickjacking attacks, including frame-buster bypasses and multi-step exploitation Test GraphQL applications for access control issues, hidden
- Identify and exploit CORS misconfigurations in modern web applications
- Manipulate WebSocket communications to exploit handshake flaws and cross-site WebSocket hijacking
- Perform web cache deception attacks using multiple real-world exploitation techniques
- Develop a practitioner-level mindset for finding high-impact vulnerabilities that automated scanners miss
Pre Requisites
- Basic understanding of web application concepts such as HTTP requests, responses, cookies, and sessions
- Familiarity with Burp Suite fundamentals (proxy, repeater, intruder) is recommended
- Prior exposure to web security basics or OWASP Top 10 concepts is helpful but not mandatory
- No programming expertise is required, though basic scripting knowledge can be beneficial
- A willingness to perform hands-on testing and manual analysis of web applications
FAQ
- Q. How long do I have access to the course materials?
- A. You can view and review the lecture materials indefinitely, like an on-demand channel.
- Q. Can I take my courses with me wherever I go?
- A. Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don't have an internet connection, some instructors also let their students download course lectures. That's up to the instructor though, so make sure you get on their good side!
{inAds}
Coupon Code(s)