Live Web App Penetration Testing Training

LEARN HOW TO HACK,
THEN PROVE IT.

Alex Olsen leads this week-long training focusing on web application penetration testing. Featuring two days of live instruction, students will learn how to exploit web apps at an intermediate-level and will be prepared to ace the Practical Web Penetration Tester exam. 

live web hacking class logo

Live Web App Penetration Testing Training

LEARN HOW TO HACK,
THEN PROVE IT.

Alex Olsen leads this week-long training focusing on web application penetration testing. Featuring two days of live instruction, students will learn how to exploit web apps at an intermediate-level and will be prepared to ace the Practical Web Penetration Tester exam. 

What is the Live Web Application Penetration Testing Training?

Take your web application penetration testing skills to the next level in this live training presented by Alex Olsen. You’ll kick off with one day of live training on Friday, July 26th, have a week of independent study, and then finish off with one final day of live training on August 2nd.

This training dives deeper into the world of finding and exploiting vulnerabilities in web applications. We’ll explore issues that can’t be found by scanners and look to understand how issues arise in modern web applications.

At the end of this training, you will have a deep understanding of web application penetration testing. All lessons taught are from a real-world experience and what has been encountered on actual engagements in the field.

Class Prerequisites

This live training is for those who have some previous experience with web application penetration testing. You must have completed at least one of the following prerequisites to take the live training:

1 year experience in webapp pentesting OR

passed the Practical Junior Penetration Tester (PJPT) certification OR

completed the Practical Web Hacking and Practical API Hacking courses from TCM Security Academy.

Next Class
July 26 – August 2nd, 2024
Details

16+ Hours of Live Online Instruction and CEU Credits

Lifetime Access to Practical Web Hacking & Practical API Hacking Courses

Hosted Labs w/50 Hours of Access Post-Training

Private Cohort and Instructor Access

24/7/365 Course Support (Lifetime)

$999.99

We offer a 20% discount to all teachers, students, first responders, active military, and veterans. Please contact our support team at support@tcm-sec.com. Proof is required.

Who is the Web App Penetration Testing Live Training For?

  • Intermediate-level web app pentesters who are looking to go beyond the fundamentals to understand how web apps work and what makes them vulnerable.
  • People who have a keen interest in web applications and how they can be exploited.
  • Anyone with some experience in web application development looking to gain some experience with security.
  • Students looking to prepare for the Practical Web Penetration Tester (PWPT) exam.

Curriculum & Requirements

Students will receive 50 hours of hosted lab access with lifetime access to the recorded training sessions.

System Requirements

8GB RAM & 256GB HDD
Up-to-Date OS & Internet Browser
Stable internet connection
Up-to-Date Kali Linux Virtual Machine

Knowledge Required

Basic Knowledge in:
Computers & Networks
A+/Net+ Equivalent

Topics Covered During Live Web App Penetration Testing Training

Live Training Session Dates- Friday, July 26 & Friday, August 2nd

This training dives deeper into the world of finding and exploiting vulnerabilities in web applications. We’ll explore issues that can’t be found by scanners and look to understand how issues arise in modern web applications. We’ll learn about the methodologies we can follow and the symptoms or behaviors that indicate an underlying issue enabling us to test applications effectively. We’ll also explore other useful methodologies for bypassing web application firewalls (WAFs), using out-of-band security testing (OAST), setting up and automating tools to cover applications at scale, API security, along with many other topics!

Day One- Friday, July 26th

  • Modern Web Architecture
  • Frontend Frameworks and Routing
  • Advanced Injection Attacks
  • OAST Injection
  • Broken Authentication
  • Broken Access Control
  • Intro to API Security Theory
  • Race Conditions
  • Scanning Web Apps
  • DAST & SAST
  • NoSQL Injection
  • WAF Bypasses

Students will have additional independent study and assignments to complete before day two of the class.

Day Two- Friday, August 2nd

  • Intro to Design Patterns
  • Intro to Code Review
  • Mass Assignment
  • Attacking JWTs
  • Token Analysis
  • Web App Components
  • In-memory DBs, Load Balancers, Reverse Proxys, Virtual Hosting, etc.
  • SSRF
  • Web Sockets
  • XSS for Red Teams
  • Team CTF

The training features hands-on labs to provide students with a practical, real-world experience that will prepare them for the PWPT exams.

*Curriculum is dependent on class skillset and other varying factors. Curriculum may change at the instructor’s discretion.

Looking for Additional Live Training Dates?

Meet the Instructor

Alex Olsen

Instructor

Alex is a Web Application Security specialist with experience working across multiple sectors, from single-developer applications all the way up to enterprise web apps with tens of millions of users. He enjoys building applications almost as much as breaking them and has spent many years supporting the shift-left movement by teaching developers, infrastructure engineers, architects, and anyone who would listen about cybersecurity.

Alex holds a Master’s Degree in Computing, as well as the PNPT, CEH, and OSCP certifications.

Hacker Camp

Bringing people together that share a common interest in learning and hacking.

Continuing Education

This live training program will qualify you for 16 hours of CEU credits. For more information please email us at support@tcm-sec.com

Build your Network

Join your peers and the TCM Security staff in our exclusive hacker camp Discord cohort channels.

graphic of a red tent behind a campfire

Stable Environments

Students enrolled in this live program will receive fifty (50) hours of access to our hosted labs. Hosted safely for you in the cloud.

Unbeatable Support

We proudly offer 24/7 customer support with the additional benefit of access to our community Discord with over 50,000+ students.

Ready to Get Started?

Your future in cybersecurity is here.
TCM Security logo
Home          About          Contact Us