During this course you will be introduced to Penetration Testing (PEN Testing) tools and methodology used within Cyber Security. The course utilises the Open Web Application Security Project (OWASP) content and methodology and will focus on using a suite of open source tools to generate a Penetration Testing report. You will be exposed to various current Penetration Testing open source tools and will test vulnerabilities in websites.



National Code 0008CS412
Study Areas Cyber Security
Study Level Short Course

Pam O'Shea

The course covers:

  • web security and web application vulnerabilities
  • HTTP protocol and web server architectures
  • firewall features and operation
  • web server scanner software and web content scanner software
  • proxy testing tools
  • web application testing tools
  • testing for weaknesses including SQLi, Broken Authentication and Session Management, Cross Site Scripting (XSS) and Insecure Direct Object Reference

You will also learn how to prepare and present a penetration test report.

An understanding of the Python scripting language, along with previous IT/Networking/Security knowledge and experience.

All materials are provided.

This course is appropriate for IT and Security professionals, including those working in the security space who want to build their skill set to further securitise systems and networks.

You have the option to complete the assessment for the unit of competency VU21997 Expose Website Security Vulnerabilities. VU21997 is an elective unit in the Certificate IV in Cyber Security, therefore, upon successful completion you will automatically receive a credit transfer.

Alternatively, students who do not wish to complete the assessment can receive an ungraded participation mark.

Last updated: December 18, 2018 03:37pm