Web Application

Pentesting
 Sr. No Topic Sub Topic Hours

Module - 1 Introduction • What are WebApplications

4
• Introduction to VAPT
• VAPT vs Bug Bounties
• Some Basic Terminologies
• Setting Up your Hacking environment

Fundamentals
Module - 2 Penetration Testing 2
• OWASP10
Fundamentals • OWASP 2013 vs 2017 vs 2021
• Mitre Framework
• Top 10 Rules for Bug Bounties
• CVSS Framework
 Sr. No Topic Sub Topic Hours

Authentication • OTP Bypass 4

Module - 3
Bypass • Captcha Bypass
• Response Manipulation
• Status code manipulation
• OTP Code leakage
• JS File Analysis
• 2FA Code Reusability
• Lack of Bruteforce Protection
• Missing 2FA code integrity validation
• Password Reset Disable 2FA
• Backup Code Abuse
• Clickjacking disables 2FA
• Enabling 2FA doesn't expire previous
sessions
• Bypass 2FA with null or 00000
• Mitigations
Sr. No Topic Sub Topic Hours

Module - 4 Cross Site XSS 4

• Reflected XSS
Scripting
• Stored XSS
• DOM XSS
• Blind XSS
• Post based XSS
• PostMessage
• Mitigations
Rate Limiting
Module - 5 Rate Limiting 4
• No Rate Limiting
• Rate Limit Bypass using headers
• Rate Limit Bypass using special
characters
• Race Conditions
• Mitigations
Sr. No Topic Sub Topic Hours

Cross Site Request Forgery

Module - 6 CSRF 4
• CSRF Attacks
• CSRF to Account Takeover
• CSRF to Account Delete
• CSRF Bypass Techniques
• Mitigations

Module - 7 Open Redirect Open Redirect 4

• Open Redirect Attack
• Open Redirect DOM Based Attacks
• Open Redirect Bypasses
• Mitigations
Sr. No Topic Sub Topic Hours

Module - 8 Cross Origin CORS 4

Resource Sharing • CORS Attacks via CURL
Attacks • CORS Attacks via Burpsuite
• CORS Attacks Suffix match
• CORS Attacks Prefix Match
• CORS Attacks Not escape dot
• CORS Attacks Substring Match
• CORS Attacks Trust Null
• CORS Attacks Mitigations

Module - 9 Click Jacking Click Jacking Attacks 4

Attacks • X-Frame Options
• iFrames
• Mitigations
 Sr. No Topic Sub Topic Hours

HTML Injection • HTML Injection Atacks 4

Module - 10
• HTML Injection Iframes
Attacks
• HTML Injection Deface
• Mitigations

Module - 11 Broken Link • Broken Link Hijacking - Social Media 4

Hijacking Links
• Broken Link Hijacking - Github/S3
Buckets
• Mitigations

Session related • Session Hijacking

Module - 12 4
Issues • Session Fixation
• Failure to Invalidate Session
• Mitigations
 Sr. No Topic Sub Topic Hours

SQL Injection • SQL Injection Types 4

Module - 13
• SQL Injection with SQLMap
Attacks • SQL Injection Bypass with Atlas
• Mitigations
• SSRF Fundamentals
Module - 14 Server Side
• Internal SSRF 4
Request Forgery
• External SSRF
• Microstratergy SSRF
• Mitigations
• Local File Attacks
Module - 15 Local File
• Local File MPEG Attacks 4
Inclusion
• Local File Inclusion Linux Attacks
• Local File Inclusion Windows Attacks
• Mitigations
 Sr. No Topic Sub Topic Hours

Module - 16 Remote Code • RCE 4

Execution • Apache Struts2 RCE
• File Upload RCE
• Apache Tomcat WAR RCE
• Mitigations

• Subdomain Takeovers
Module - 17 Subdomain 4
• Active Subdomain Takeovers
Takeovers • Passive Subdomain Takeovers
• Subdomain Takeovers - AWS
• Subdomain Takeovers - Shopify
• Subdomain Takeovers - Can I Take Over
XYZ 2
• Subdomain Takeovers - New Exclusive
Takeover Template
• Mitigations
 Sr. No Topic Sub Topic Hours

Module - 18 Bug Bounty • Bugcrowd Platform 4

RoadMap • Hackerone Platform
• Intigriti Platform
• RVDP NCIIPC
• Private RVDP Programs

Capstone Project
Module - 19 Capstone Project 4
• Web App Capstone Project
• Proffesional Report Writing

Module - 20 Final Exam • Final Exam 2

76
 [email protected] @hacktifycs

+91-9106147779 @hacktifycs

+91-8160206309 www.hacktify.in

Thank You! @hacktifycs

Unit no. 1021,1st floor-1 Aerocity,

SakiNaka, Andheri(East),
Mumbai- 400072