Coursera Plus Annual is 40% Off — Ends June 29.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

A Heaven for Hackers - Breaking Web Security Virtual Appliance

NahamSec via YouTube

Start learning Write review
Simplilearn Ad

Pass the PMP® Exam on Your First Try — Expert-Led Training

Learn More → CodeSignal Ad

2,000+ Free Courses with Certificates: Coding, AI, SQL, and More

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Explore a comprehensive conference talk from NahamCon2020 that delves into breaking web security through a virtual appliance. Learn about hacking methodologies, case studies, and practical techniques for enumerating services and defining attack vectors. Discover how to target admin UIs, understand proxy services, and exploit vulnerabilities like CVE-2017-3163. Gain insights into leaking active session IDs and creating exploitation chains. Perfect for cybersecurity enthusiasts and ethical hackers looking to enhance their web security testing skills.

Syllabus

Intro
Case Study
Methodology
Free Trial
Access to the Terminal
3 - Breaking Hardenings
Product Features
Enumerate Services
Define Attack Vectors
Targeting Admin UI
7- Find a Vulnerability
7.1 - Understanding Proxy
7.1 Reversing Proxy Service
7.1 - Reversing Proxy Service
7.1 - Accessing to the SOLR Admin
CVE-2017-3163 - Arbitrary file read via path traversal attack in ReplicationHandler
Leaking Active Session ID
Exploitation Chain

Taught by

NahamSec

Reviews

Start your review of A Heaven for Hackers - Breaking Web Security Virtual Appliance

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.