This course was created with the
course builder. Create your online course today.
Start now
Create your course
with
Avtomatik boshlash
Avtomatik tugatish
Oldingi dars
Tugatish va davom etish
Pentest 101
Kirish
Tanishtiruv (3:50)
Tarmoq
Tarmoq nima? (1:43)
IP manzil (5:42)
MAC manzil (2:13)
DNS server (4:03)
Websaytlar qanday ishlaydi? (2:23)
HTTP protokol (10:55)
HTTP status kodlar (4:41)
Web server tuzilishi (2:32)
Web server (9:43)
Tayyorgarlik
Virtualizatsiya (2:54)
Kali linux (3:22)
Kali Linux tizimini Windowsda o'rnatish (8:47)
Linux tizimi
Linux fayl tizimi (3:52)
Linux tanishtiruv (6:11)
Terminal. Xakerlar nega Linuxdan foydalanishadi? (4:07)
Boshlang'ich buyruqlar (14:55)
Tekst fayllar bilan ishlash (6:45)
Tarmoqqa oid buyruqlar (16:14)
Dasturlar o'rnatish (25:34)
Dasturlar o'rnatish (2-qism) (2:46)
Fayllar uchun huquqlar (27:04)
Zaifliklar
Zaifliklar (19:17)
XSS va XSS turlari (62:53)
Blind XSS zaifligi, XSS zaifligini qayerdan qidirish kerak? (25:20)
HTML inyeksiya (6:36)
Open redirect (9:54)
SSRF zaifligi (48:49)
IDOR zaifligi (12:31)
SQL inyeksiya zaifligi turlari (56:09)
SQL inyeksiya zaifligi (25:52)
Union based SQL injection (80:26)
Boolean based SQL injection (56:25)
Time based SQL injection (46:32)
Out of band SQL injection (27:15)
Error based SQL injection (5:41)
SQLmap - hujumni avtomatlashtirish (28:15)
SQL inyeksiya - xulosa (5:06)
Infomation disclosure (23:20)
Command injection (37:17)
File upload zaifliklari (47:19)
Directory traversal (26:39)
File inclusion zaifligi (21:09)
Directory listing orqali zaiflik (6:32)
Zaiflik guruhlari
Zaiflik guruhlari (1:58)
No rate limit (24:10)
Business Logic zaifliklari (24:08)
Security misconfiguration zaifliklari (4:24)
BAC zaifliklari (32:52)
Metasploit
Metasploit (31:20)
Web dasturlar xavfsizligini tekshirish
Pentest jarayoni (9:01)
Web dasturlarni pentest qilish (18:03)
Passiv ma'lumotlar to'plash (31:05)
Subdomainlar topish (10:24)
Directory fuzzing (9:38)
FHC va FFF (13:31)
Parametrlar topish (8:07)
Checklist (3:35)
Manual scan (32:50)
OWASP ZAP o'rnatish (1:42)
Avtomatik scan (14:32)
Hisobot yozish (26:08)
CMSlarni pentest qilish
CMS nima? (0:42)
Wordpress o'rnatib olish (13:33)
Wordpressni avtomatik skanerlash (8:53)
Qayta sozlab olish (8:40)
xmlrpc va wp-cron (19:30)
Wordpress directory (7:35)
Wordpress - XSS (17:47)
Admin takeover - Privilege escalation (8:23)
Admin orqali RCE (6:29)
Xulosa
Qonunlar (1:39)
Xulosa - bu darslikdan keyin yana nimalar o'ganishimiz mumkin? (4:41)
HTTP status kodlar
Darslik hali olinmagan
Agar allaqachon darslikni olgan bo'lsangiz,
Hisob orqali kirishingiz kerak
.
Enroll in Course to Unlock