Back

Hacking Web Applications

Whether you’re a curious learner, aspiring ethical hacker, or someone who wants to secure their own website, this course provides an easy-to-follow and comprehensive pathway to mastering the basics of website hacking.

Tarek

Lead Trainer

5 hr

Course Price$147 USD
Description

Course Curriculum

Reconnaissance, Enumeration, and Analysis

7 lessons

Reconnaissance (Passive & Active)

00:00

Subdomain Enumeration

00:00

Directory and File Brute-Forcing

00:00

Fuzzing Parameters

00:00

Technology Stack Identification

00:00

Business Logic Mapping

00:00

Lab: Recon + Enumeration

Cracking Identity

6 lessons

Identity & Authentication

00:00

Credential Attacks and Rate-Limiting Bypass

00:00

MFA and Other Authentication Mechanisms

00:00

Session Hijacking, Fixation, and Cookie Poisoning

00:00

Lab: Auth Attack Scenarios

Session Hijacking, Fixation, and Cookie Poisoning

00:00

Access Control & Authorization Failures

4 lessons

Access Control Fundamentals (Authentication vs Authorization)

00:00

Broken Access Control (BAC) Concepts and Patterns

00:00

Insecure Direct Object Reference (IDOR)

00:00

Lab: IDOR + Privilege Boundary Testing (horizontal + vertical access control checks)

Client-Side Attacks and Browser Trust

7 lessons

Client vs Server Execution

00:00

Cross-Site Scripting (XSS) Fundamentals

00:00

XSS Types (Reflected, Stored, DOM-Based)

00:00

HTML Injection and UI Deception

00:00

Cross-Site Request Forgery (CSRF)

00:00

Open Redirects and Trust Abuse

00:00

Lab: XSS + CSRF Testing in Burp (confirm execution + validate impact + apply defenses checks)

Exploiting the Back-End

4 lessons

SQL Injection

00:00

OS Command Injection

00:00

Server-Side Request Forgery (SSRF)

00:00

Lab: Backend Exploitation Chain (SQLi/Command Injection/SSRF based on app endpoints)

CMS Pentesting and Attacking

3 lessons

Content Management System Introduction

00:00

Attacking CMS

00:00

Lab: CMS Attack Walkthrough

Where this course lies in the Roadmap

Beginner Roadmap
8 courses
Hacking For Beginners cover image
Hacking For Beginners

Tarek

4 hr 59 min
Hacking With Kali Linux cover image
Hacking With Kali Linux

Tarek

6 hr 51 min
Blue Team Basics cover image
Blue Team Basics

Tarek

5 hr
Intro To Cyber Security cover image
Intro To Cyber Security

Tarek

5 hr
SOC Analyst Fundamentals cover image
SOC Analyst Fundamentals

Tarek

5 hr
Web Security Fundamentals cover image
Web Security Fundamentals

Tarek

5 hr
Hacking Web Applications cover image
Hacking Web Applications

Tarek

5 hr
Wi-Fi Hacking & Cracking cover image
Wi-Fi Hacking & Cracking

Tarek

5 hr
Discover all roadmaps

The trusted cybersecurity training platform for professionals who need real skills, not certifications for the shelf.

Policies

Terms & ConditionsPrivacy PolicyCookies Policy

Quick Links

HomeAbout UsCoursesServicesEventsBlog

Follow Us On

© 2026 Hackersacademy.