- Technology
- Cybersecurity
- Information Security (InfoSec)
- Ethical Hacking
- Server-Side Request Forgery (SSRF)
- Technology
- Cybersecurity
- Information Security (InfoSec)
- Ethical Hacking
- XML External Entity (XXE) Injection
- Technology
- Cybersecurity
- Information Security (InfoSec)
- Ethical Hacking
- Server-Side Template Injection (SSTI)
The Bug Hunter's Methodology 2.0 - Advanced Web Application Security Testing
Learn AI, Data Science & Business — Earn Certificates That Get You Hired
Lead AI-Native Products with Microsoft's Agentic AI Program
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the latest techniques, tools, and vulnerability data for penetration testing and security in this 46-minute conference talk from APPSEC Cali 2018. Delve into cutting-edge approaches for discovery, cross-site scripting (XSS), server-side template injection, server-side request forgery, code injection (including SQL, PHP, and more), XML external entity (XXE) attacks, exploiting misconfigured infrastructure, continuous integration (CI) systems, and code repositories. Learn from Jason Haddix, Head of Trust and Security at Bugcrowd, as he builds upon his previous Bug Hunter's Methodology 1.0 presentation, offering valuable insights for both seasoned security professionals and aspiring bug hunters.
Syllabus
APPSEC Cali 2018 - The Bug Hunter's Methodology 2.0
Taught by
OWASP Foundation