Directory Traversal | InfoSec4TC

Autoplay
Autocomplete

Previous Lesson Complete and Continue

Bug Bounty Master Class

Introduction

Introduction (2:28)

Getting Familiar with Burp Suite

Configuring Burp Suite with Browser (3:18)
Taget, Proxy and Spider Tabs of Burp Suite (5:25)
Scanner, Intruder and Repeater Tabs of Burp Suite (5:02)
Wrapping up Burp Suite (3:57)

Reconnaissance

Getting The Juicy Information from the Headers (5:38)
Information Gathering using google Dorks (7:22)
Google Dorks ( Demo ) (5:33)
Analyzing Files on Website for Juicy Endpoints (6:34)
Downloading the Source of a Website (5:27)
The Dirbuster (4:26)
Gathering Information using WhatWeb (3:31)
Enemurating Subdomains (10:24)
Using The Harvester for finding Public Info (6:04)
The Way Back Machine (5:16)
Vhost Discovery (2:54)

Using Nmap for Information Gathering Purposes

Getting Familiar with NMap (8:23)
Different Type of Nmap scans (5:50)
Nmap scans ( Demo ) (4:38)
Banner Grabbing (4:05)

Getting Starting in Finding bugs

Installing Your Testing Environment (4:30)
Testing for HTTP Strict Transport Security (2:51)
Robots.txt ( Demo ) (4:10)
HTML Injection (6:22)

Testing For Session Management Issues

Session Management (5:49)
Cross Site Request Forgery (8:45)

Authentication Testing

Broken Authentication (11:54)

Authorization Testing

IDOR (7:35)
Directory Traversal (7:39)

Client Side Testing

Clickjacking (5:21)
Exploiting CORS (Cross Origin Resource Sharing) (8:30)

Testing For Input Validaton

HTTP Parameter Pollution (6:10)
Cross Site Scripting ( XSS ) (12:08)
Sql Injection ( SqlI ) (5:56)

Unvalidated Redirect and Forwards

Unvalidated Redirect and Forwards (6:02)

File Upload Vulnerabilities

Unrestricted file Upload (6:51)

Command Injection

Command Injection (7:27)

Teach online with

Directory Traversal

Lesson content locked

If you're already enrolled, you'll need to login.

Enroll in Course to Unlock