Udemy – Burp Web Security Academy – Apprentice Labs Walkthrough 2023-4

Apr 18, 2025 - 19:54

0 0

Burp Web Security Academy – Apprentice Labs Walkthrough provides a step-by-step path to understanding and solving all 52 introductory labs provided by Portswigger. The instructor of this course, Martin Volk, is a cybersecurity expert with 25 years of experience, holding the following credentials: CISSP, OSCP, OSWP, Portswigger BSCP, CCIE, PCI ISA, and PCIP. He has worked as a consultant for a large technology company and has been actively involved in bug bounty programs, discovering thousands of critical vulnerabilities.

In this course, Martin walks through all the introductory labs in a hands-on manner and provides valuable insights into how to identify and exploit these vulnerabilities. His teaching approach is not just about loading malicious payloads, but also includes a detailed explanation of each step in the process of finding a vulnerability and why it can be exploited in a specific way. The training videos are designed to be easy for learners to follow and repeat. In addition, Martin shares several tips and tricks for those preparing for the Burp Suite Certified Practitioner (BSCP) exam. This course is highly recommended for those interested in getting started in web application penetration testing, web bug hunting, or as a prerequisite for the BSCP certification course.

What you will learn

Fundamental vulnerabilities in web applications
Getting started with web application penetration testing
Getting started in web bug hunting
Preparing for the Burp Suite Certified Practitioner (BSCP) exam
52 educational videos on ethical hacking and security
Step-by-step solutions and explanations for the introductory Burp labs
SQL injection
Cross-site scripting (XSS)
Cross-site request forgery (CSRF)
Clickjacking
Cross-Origin Resource Sharing (CORS)
XML External Entity Injection (XXE)
Server-side request forgery (SSRF)
Operating system command injection
Directory Traversal
Access control vulnerabilities
Authentication
WebSockets
Insecure Deserialization
Information Disclosure
Business Logic Vulnerabilities
HTTP Host Header Attacks
OAuth authentication
File upload vulnerabilities
JWT
Essential skills
Prototype Pollution
GraphQL API vulnerabilities
Race Conditions
NoSQL injection
API testing
Web LLM attacks
Web Cache Deception
Mysterious introductory laboratories

This course is suitable for people who:

Anyone interested in learning the basics of ethical hacking/web application penetration testing.
Anyone interested in learning the basics of ethical web application bug hunting.
Anyone interested in learning how hackers hack web applications .
Developers looking to expand their knowledge of vulnerabilities that may affect them.
Anyone interested in application security.
Anyone interested in Red Teaming.