U9bxhwc3saauasf3vw6h 1

WebSecNinja: Lesser Known WebAttacks

Learn about the lesser known web attacks that are not taught elsewhere.

   Watch Promo

WebSecNinja: Lesser Known WebAttacks is a brand new and unique web security course that takes the learner to the next level of web security. A perfect blend of latest and lesser known web attacks that are explained with ultimate details and accompanied by demos and “how tos” that you can apply in real world red-team pentesting and security assessments. The course curriculum is designed to include web attacks and techniques that are not much documented in books, trainings, courses and elsewhere. The course doesn't have a fixed agenda and the purpose of that is to accommodate latest attacks as and when they are discovered or published on various conferences like BlackHat, DEFCON etc. This course is best suited for web security architects, students, web developers, front-end javascript developers, security engineers, and security consultants. The contents of the course are well structured to satisfy all kind of audience from beginner to advanced level of competence.


Your Instructor


Ajin Abraham
Ajin Abraham

Ajin Abraham is an Application Security Engineer by profession having 5+ years of experience in Application Security including 2 years of Security Research. He is passionate on developing new and unique security tools than depending on pre existing tools that never work. Some of his contributions to Hacker's arsenal include OWASP Xenotix XSS Exploit Framework, Mobile Security Framework (MobSF), Xenotix xBOT, MalBoxie, Firefox Add-on Exploit Suite, Static DOM XSS Scanner, NodeJsScan etc to name a few.

He has been invited to speak at multiple security conferences including ClubHack, NULLCON, OWASP AppSec AsiaPac, BlackHat Europe, Hackmiami, Confidence, BlackHat US, BlackHat Asia, ToorCon, Ground Zero Summit, Hack In the Box and c0c0n.


Class Curriculum


  Introduction to the Course
Available in days
days after you enroll
  JSON HIJACKING
Available in days
days after you enroll
  LESSER KNOWN XSS VARIANTS
Available in days
days after you enroll
  SERVER SIDE INCLUDES INJECTION (SSI INJECTION)
Available in days
days after you enroll
  SERVER SIDE REQUEST FORGERY (SSRF)
Available in days
days after you enroll
  REFLECTED FILE DOWNLOAD (RFD)
Available in days
days after you enroll
  COURSE MATERIALS
Available in days
days after you enroll

Frequently Asked Questions


When does the course start and finish?
The course starts now and never ends! It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
How does lifetime access sound? After enrolling, you have unlimited access to this course for as long as you like - across any and all devices you own.
What if I am unhappy with the course?
We're committed to providing the best online learning experience on the Web! If you experience an issue, contact us within 7 days and we'll be happy to help.

Get started now!