Avtomatik boshlash
Avtomatik tugatish
Oldingi dars
Tugatish va davom etish
Pentest 101
Kirish
Tanishtiruv (3:50)
Tarmoq
Tarmoq nima? (1:43)
IP manzil (5:42)
MAC manzil (2:13)
DNS server (4:03)
Websaytlar qanday ishlaydi? (2:23)
HTTP protokol (10:55)
HTTP status kodlar (4:41)
Web server tuzilishi (2:32)
Web server (9:43)
Tayyorgarlik
Virtualizatsiya (2:54)
Kali linux (3:22)
Kali Linux tizimini Windowsda o'rnatish (8:47)
Linux tizimi
Linux fayl tizimi (3:52)
Linux tanishtiruv (6:11)
Terminal. Xakerlar nega Linuxdan foydalanishadi? (4:07)
Boshlang'ich buyruqlar (14:55)
Tekst fayllar bilan ishlash (6:45)
Tarmoqqa oid buyruqlar (16:14)
Dasturlar o'rnatish (25:34)
Dasturlar o'rnatish (2-qism) (2:46)
Fayllar uchun huquqlar (27:04)
Zaifliklar
Zaifliklar (19:17)
XSS va XSS turlari (62:53)
Blind XSS zaifligi, XSS zaifligini qayerdan qidirish kerak? (25:20)
HTML inyeksiya (6:36)
Open redirect (9:54)
SSRF zaifligi (48:49)
IDOR zaifligi (12:31)
SQL inyeksiya zaifligi turlari (56:09)
SQL inyeksiya zaifligi (25:52)
Union based SQL injection (80:26)
Boolean based SQL injection (56:25)
Time based SQL injection (46:32)
Out of band SQL injection (27:15)
Error based SQL injection (5:41)
SQLmap - hujumni avtomatlashtirish (28:15)
SQL inyeksiya - xulosa (5:06)
Infomation disclosure (23:20)
Command injection (37:17)
File upload zaifliklari (47:19)
Directory traversal (26:39)
File inclusion zaifligi (21:09)
Directory listing orqali zaiflik (6:32)
Zaiflik guruhlari
Zaiflik guruhlari (1:58)
No rate limit (24:10)
Business Logic zaifliklari (24:08)
Security misconfiguration zaifliklari (4:24)
BAC zaifliklari (32:52)
Metasploit
Metasploit (31:20)
Web dasturlar xavfsizligini tekshirish
Pentest jarayoni (9:01)
Web dasturlarni pentest qilish (18:03)
Passiv ma'lumotlar to'plash (31:05)
Subdomainlar topish (10:24)
Directory fuzzing (9:38)
FHC va FFF (13:31)
Parametrlar topish (8:07)
Checklist (3:35)
Manual scan (32:50)
OWASP ZAP o'rnatish (1:42)
Avtomatik scan (14:32)
Hisobot yozish (26:08)
CMSlarni pentest qilish
CMS nima? (0:42)
Wordpress o'rnatib olish (13:33)
Wordpressni avtomatik skanerlash (8:53)
Qayta sozlab olish (8:40)
xmlrpc va wp-cron (19:30)
Wordpress directory (7:35)
Wordpress - XSS (17:47)
Admin takeover - Privilege escalation (8:23)
Admin orqali RCE (6:29)
Xulosa
Qonunlar (1:39)
Xulosa - bu darslikdan keyin yana nimalar o'ganishimiz mumkin? (4:41)
Teach online with
Union based SQL injection
Darslik hali olinmagan
Agar allaqachon darslikni olgan bo'lsangiz,
Hisob orqali kirishingiz kerak
.
Enroll in Course to Unlock