Online Course
Hacker101
HackerOne via Independent
Overview
Hacker101 is a collection of videos that will teach you everything you need to operate as a bug bounty hunter. The material is available for free from HackerOne. Taught by HackerOne’s Cody Brocious, the Hacker101 material is located at this GitHub repository and the videos are available through YouTube. Feel free to share and join the conversation on twitter with hashtag #hacker101.
Syllabus
Writing reports
Setting up Burp Proxy
HTTP basics
Cookie security
HTML parsing for hackers
MIME sniffing
Encoding sniffing
Same-Origin Policy
Cross-Site Request Forgery
Cross-Site Scripting
- Reflected
- Stored
- DOM
- Detection, exploitation, and mitigation
Authorization bypasses and forced browsing
Directory Traversal
Command Injection
SQL Injection
- Detection, exploitation, and mitigation
- Exploiting blind SQLi
Session Fixation
Clickjacking
File Inclusion vulnerabilities
File Upload vulnerabilities
Null Termination vulnerabilities
Unchecked Redirects
Secure Password Storage
Crypto Crash Course
- XOR
- Symmetric ciphers
Stream
Block
- Asymmetric ciphers
- Hashes
- MACs
Crypto Attacks
- Stream cipher reuse
- ECB block reordering
- ECB partial decryption
- Padding oracles
- Hash length extension
Crypto Tricks
- Detecting ECB
- Determining block sizes
- Determining controllable data offset
Taught by
Cody Brocious
Tags
Related Courses
-
Symmetric Cryptography Essential Training
-
Systems and Application Security
(ISC)²
4.0 -
Fundamentals of Computer Network Security
University of Colorado System
-
Exploiting and Securing Vulnerabilities in Java Applications
University of California, Davis
-
Learning the OWASP Top 10
-
Cryptography I
Stanford University
4.7
Reviews
4.0 rating, based on 1 reviews
Never Stop Learning!
