cyber-security-resources/web_application_testing
2018-07-18 12:40:22 -04:00
..
docker_references.md Update docker_references.md 2018-05-02 00:20:11 -04:00
README.md adding additional web app testing references 2018-07-18 12:40:22 -04:00

Web Application Testing References

Vulnerable Servers

There are a series of vulnerable web applications that you can use to practice your skills in a safe environment. You can get more information about them in the vulnerable_servers directory in this repository.

The following are a few popular tools that you learned in the video courses part of these series:

How to Integrate OWASP ZAP with Jenkins

You can integrate ZAP with Jenkins and even automatically create Jira issues based on your findings. You can download the ZAP plug in here.

This video provides an overview of how to integrate

Javascript Tools

XSS - Cross-Site Scripting

CSV Injection

SQL Injection

Command Injection

ORM Injection

FTP Injection

XXE - XML eXternal Entity

CSRF - Cross-Site Request Forgery

SSRF - Server-Side Request Forgery

Rails

AngularJS

SSL/TLS

Webmail

NFS

Fingerprint

Sub Domain Enumeration

Crypto

Web Shell

OSINT

Evasions

CSP

WAF

JSMVC

Authentication

Tricks

CSRF

Remote Code Execution

XSS

SQL Injection

NoSQL Injection

FTP Injection

XXE

SSRF

Header Injection

URL

AMAZING RESOURCES ABOUT WEB TECHNOLOGIES, FRAMEWORKS, PLATFORMS (hundreds of resources)

Platforms

Programming Languages

Front-End Development

Back-End Development

Databases

Content Management Systems