Sheikh Younus
Program Summary
Injections are one of the top threats facing web applications today. They target the heart of applications: databases, which can result in some of the most costly breaches a company can face.
Cybr's "Injection Attacks: The Free Guide" course provides hands-on experience executing attacks against vulnerable applications, which is an important step in learning how to find vulnerabilities, and ultimately, how to fix and prevent those vulnerabilities. In addition, the course provides an explanation of other types of injection threats, examples of how these attacks work, the impact that successful attacks can have, and security best practices to prevent vulnerabilities.
Outcomes/Objectives
Upon completing this course, the badge recipient has the:
Knowledge of SQL injections, OS Command injections, LDAP injections, XML (XXE) and XPATH injections, and SMTP Header injections
Ability to gather information about a target to look for potential injection vulnerabilities
Ability to manually and automatically test applications for injection vulnerabilities
Ability to look at code and identify potential injection vulnerabilities
Knowledge of coding best practices to prevent all of the covered injection threats
Deliverable
Enroll in the Injection Attacks: The Free Guide course.
Complete all lessons and quizzes to receive the course certificate.
Program Duration
4 hours
Skills / Knowledge
- Identify potential injection vulnerabilities
- Prevent injection threats
- OS Command injections
- SQL injections
- LDAP injections
- XML (XXE)
- XPATH injections
- SMTP Header injections
- Test applications for injection vulnerabilities