Advanced PEN Testing for Web Site Vulnerabilities
This advanced level penetration (PEN) testing course provides the knowledge and skills to expand the testing capability for web vulnerabilities. Building on the skills established in the PEN Testing Fundamentals in Cyber Security course, you will learn skills in using advanced features of current toolsets in order to identify weaknesses in the security of an organisations website.
This also includes the development of a penetration (PEN) test report which will identify the root cause of the issues and include mitigation strategies for the identified website weaknesses. The course utilises the Open Web Application Security Project (OWASP) security methodology and open source tools provide a sound foundation to develop these skills.
|Study Level||Short Course|
By the end of the course, you will be able to:
- comprehend the web application development process
- utilise tools and technology for testing web site content
- examine the advanced features of a current proxy testing tool suite
- select a testing framework for web sites
- perform vulnerability scanning
- identify common web application vulnerabilities
- exploit web application vulnerabilities
- develop and present the penetration testing report
- research new web site application developments
Penetration testing concepts and procedures for testing cyber security infrastructure; installing and using software packages; interpreting and writing scripts; preparing technical documentation; gathering, test and allocating project resources; web application development practices and environment; web architecture and frameworks; enumeration tools; spidering and scanning tools; user agent string values, proxy tools; OWASP and penetration testing frameworks; common website vulnerabilities.
All materials are provided.
Learners who have completed PEN Testing Fundamentals in Cyber Security and have satisfied the prerequisite criteria.
You have the option of completing the assessment for the unit VU22254 Undertake Advanced Penetration Testing for Website Vulnerabilities. VU22254 is an elective unit in the Advanced Diploma of Cyber Security so upon successful completion you will automatically receive a credit transfer.
Alternatively, students who do not wish to complete the assessment can receive an ungraded participation mark.