Explore how attackers manipulate JavaScript’s prototype inheritance model to inject malicious data, compromise application logic, and even achieve remote code execution.

Master a variety of cutting-edge web security tools and methodologies, including fuzzing, static analysis, dynamic analysis, and manual code review.

Learn how to analyze source code to identify security vulnerabilities, understand the application’s logic, and uncover potential attack vectors.

Discover how attackers store malicious code on a web server to launch persistent XSS attacks, targeting multiple users over time.

Learn how attackers take over user sessions, potentially gaining unauthorized access to sensitive information and functionality.

Understand the risks associated with deserialization in .NET applications and how attackers can exploit these vulnerabilities to achieve remote code execution.

Explore various techniques used by attackers to execute arbitrary code on a target web server, often leading to complete compromise of the system.

Learn how to exploit SQL injection vulnerabilities even when there is no direct feedback from the application, using various techniques to infer information and compromise the database.

Understand how attackers extract sensitive data from web applications, including through SQL injection, XXE attacks, and compromised file uploads.