top of page
Black Grunge

Learning Portal

These are some great things I have watched and use to learn. Most people would add a caveat about only for educational purposes, whereas I am of the opinion that it's not my place to tell you what to do, if you're silly enough to use these erroneously then you are just that, silly and frankly deserve a good old fashioned telling off.

Jailbreaking AI using Local LLM's

Hacking AI

My new favourite Linux OS and the current, Kali Linux using WSL

Bug Bounty

Red Team, Blue Team and of course Purple Team

Red Team, Blue Team and of course Purple Team

Credit xalgord

Content List:

# History
# Web and Server Technology
# Setting up the lab with Burp Suite and bWAPP
# Mapping the application and attack surface
# Understanding and exploiting OWASP top 10 vulnerabilities
# Session management testing
# Bypassing client-side controls
# Attacking authentication/login
# Attacking access controls (IDOR, Priv esc, hidden files and directories)
# Attacking Input validations (All injections, XSS and mics)
# Generating and testing error codes
# Weak cryptography testing
# Business logic vulnerability

----

Web Application Penetration Testing

History

History of the Internet https://www.youtube.com/watch?v=VPToE8vwKew
How the Internet Works in 5 Minutes https://www.youtube.com/watch?v=sMHzfigUxz4

Web and Server Technology

 

Basic concepts of web applications, how they work and the HTTP protocol https://www.youtube.com/watch?v=qcALGDn0zpk
HTML Crash Course For Absolute Beginners https://www.youtube.com/watch?v=salY_Sm6mv4
Difference between static and dynamic website ttps://www.youtube.com/watch?v=0QT06AFAbdc
HTTP Request Methods & Headers Explained ttps://www.youtube.com/watch?v=8q5mc1AEtYo
REST API concepts and examples ttps://www.youtube.com/watch?v=-mN3VyJuCjM
What is a cookie? ttps://www.youtube.com/watch?v=yoE9-tNvhRs
HTTP Status codes https://www.youtube.com/watch?v=qmpUfWN7hh4
What Is an HTTP Proxy? https://www.youtube.com/watch?v=j9-Y0KWVJ1k
HTTP Cookies and Sessions https://www.youtube.com/watch?v=zHBpJA5XfDk
HTTP basic and digest authentication https://www.baeldung.com/cs/digest-vs-basic-authentication
What is a Server? https://www.youtube.com/watch?v=BPVcsOKfd34
Client-Server Model https://www.youtube.com/watch?v=B8azMzrluHE
Characters, Symbols and the Unicode Miracle https://www.youtube.com/watch?v=MijmeoH9LT4
Encoding Basics https://www.youtube.com/watch?v=8ue8febDDKU

Setting up the lab with BurpSuite and bWAPP

 

Setup lab with bWAPP (2024) ttps://www.youtube.com/watch?v=cQhE0aBfreU
Getting Started with Burp Suite (PortSwigger Official) ttps://www.youtube.com/watch?v=S9i_15D2VvY
Configure Firefox with Burp Suite and Install Certificate ttps://www.youtube.com/watch?v=JexC1-eeg-c
Mapping and Scoping a Website with Burp Suite ttps://www.youtube.com/watch?v=Pr-212A0A4E
Spidering and Crawling with Burp Suite ttps://www.youtube.com/watch?v=tAqj6h5a-k8
Active and Passive Scanning ttps://www.youtube.com/watch?v=vVuxa-5n_1M
Burp Suite Intruder: A Full Tutorial ttps://www.youtube.com/watch?v=1pGZ5dw-23k
Burp Suite Intruder Attack Types Explained ttps://www.youtube.com/watch?v=4zjg6ZST5vU
Burp Suite Repeater Tutorial ttps://www.youtube.com/watch?v=L9iK2aPmNsM
Burp Suite Sequencer Explained ttps://www.youtube.com/watch?v=qbtD5I6m90A
Burp Suite Decoder Tutorial ttps://www.youtube.com/watch?v=LqZ6Yh-a2Pk
Burp Suite Comparer Tutorial ttps://www.youtube.com/watch?v=D0s8yf8aWPE

Mapping the application and attack surface

 

Mapping application using robots.txt https://www.youtube.com/watch?v=W9udg2iM_RA
Find Hidden Directories And Files With GoBuster ttps://www.youtube.com/watch?v=40n5p-0I2iA
Discover hidden directories and files with Burp Intruder ttps://www.youtube.com/watch?v=4Fz9mJeMNkI
Identify application entry points ttps://www.youtube.com/watch?v=IgJWPZ2OKO8
Identify client and server technology (Wappalyzer & WhatWeb) htps://www.youtube.com/watch?v=B8jN_iWjtyM
Identify server technology using banner grabbing (telnet) https://www.youtube.com/watch?v=O67M-U2UOAg
Pentesting with Google Dorks (Google Hacking) https://www.youtube.com/watch?v=NmdrKFwAw9U
Use Nmap for fingerprinting web server https://www.youtube.com/watch?v=VQV-y_-AN80
Review web servers' metafiles for information leakage https://www.youtube.com/watch?v=sds3Zotf_ZY
Web Application Enumeration https://www.youtube.com/watch?v=vX-qn6V_y-Q
Map execution path through application https://www.youtube.com/watch?v=0I0NPiyo9UI
Fingerprint web application frameworks https://www.youtube.com/watch?v=ASzG0kBoE4c

 

Understanding and exploiting OWASP top 10 vulnerabilities

OWASP Top 10 2021 Explained (Full Course) https://www.youtube.com/watch?v=1I-b--I4j4U
A01:2021 - Broken Access Control https://www.youtube.com/watch?v=P38at6Tp8Ms
A02:2021 - Cryptographic Failures https://www.youtube.com/watch?v=2RKbacrkUBU
A03:2021 - Injection (SQL Injection) https://www.youtube.com/watch?v=rWHvp7rUka8
A04:2021 - Insecure Design https://www.youtube.com/watch?v=QJexYmJ-d5A
A05:2021 - Security Misconfiguration https://www.youtube.com/watch?v=JuGSUMtKTPU
A06:2021 - Vulnerable and Outdated Components https://www.youtube.com/watch?v=IGsNYVDKRV0
A07:2021 - Identification and Authentication Failures https://www.youtube.com/watch?v=mruO75ONWy8
A08:2021 - Software and Data Integrity Failures (Insecure Deserialization) https://www.youtube.com/watch?v=nkTBwbnfesQ
A09:2021 - Security Logging and Monitoring Failures https://www.youtube.com/watch?v=IFF3tkUOF5E
A10:2021 - Server-Side Request Forgery (SSRF) https://www.youtube.com/watch?v=52-g7x1i-8Y

 

Session management testing

Bypass authentication using cookie manipulation https://www.youtube.com/watch?v=mEbmturLljU
Cookie Security Via HttpOnly and Secure Flag - OWASP https://www.youtube.com/watch?v=3aKA4RkAg78
What is Session Fixation? (PortSwigger) https://www.youtube.com/watch?v=YpFRx0a4kX8
What is Cross-Site Request Forgery (CSRF)? (PortSwigger) https://www.youtube.com/watch?v=m0EHlfTgGUU
Admin bypass using session hijacking https://www.youtube.com/watch?v=1wp1o-1TfAc

Bypassing client-side controls

 

What are hidden form fields in HTML? https://www.youtube.com/watch?v=orUoGsgaYAE
Bypassing hidden form fields using Burp Suite https://www.youtube.com/watch?v=xahvJyUFTfM
Changing price on eCommerce website using parameter tampering https://www.youtube.com/watch?v=A-ccNpP06Zg
Hacking Websites with Cookie Tampering https://www.youtube.com/watch?v=NgKXm0lBecc
Understanding the Referer header https://www.youtube.com/watch?v=GkQnBa3C7WI
What is Cross-Origin Resource Sharing (CORS)? https://www.youtube.com/watch?v=Ka8vG5miErk
What are Security Headers? https://www.youtube.com/watch?v=TNlcoYLIGFk

 

Attacking authentication/login

Brute-force login panel with Burp Suite Intruder https://www.youtube.com/watch?v=25cazx5D_vw
Username enumeration https://www.youtube.com/watch?v=WCO7LnSlskE
Authentication over insecure HTTP protocol (Wireshark) https://www.youtube.com/watch?v=ueSG7TUqoxk
Forgot password vulnerability https://www.youtube.com/watch?v=FEUidWWnZwU
Login page autocomplete feature enabled vulnerability https://www.youtube.com/watch?v=XNjUfwDmHGc

 

Testing for Weak password policy (OTG-AUTHN-007)

https://www.owasp.org/index.php/Testing_for_Weak_password_policy(OTG-AUTHN-007](https://www.google.com/search?q=https://www.owasp.org/index.php/Testing_for_Weak_password_policy\(OTG-AUTHN-007\))
Test for credentials transport over an encrypted channel https://www.youtube.com/watch?v=21_IYz4npRs
Testing browser cache weaknesses https://www.youtube.com/watch?v=2T_Xz3Humdc
Bypassing login panel using SQL Injection https://www.youtube.com/watch?v=TSqXkkOt6oM

Attacking access controls (IDOR, Priv esc, hidden files and directories)

Finding admin panels https://www.youtube.com/watch?v=r1k2lgvK3s0
Finding Hidden Webpages With Dirbuster / Gobuster https://www.youtube.com/watch?v=--nu9Jq07gA
What is IDOR (Insecure Direct Object Reference)? https://www.youtube.com/watch?v=gci4R9Vkulc
Zomato IDOR bug bounty walkthrough https://www.youtube.com/watch?v=tCJBLG5Mayo
What is privilege escalation? https://www.youtube.com/watch?v=80RzLSrczmc
Privilege escalation example https://www.youtube.com/watch?v=g3lv__87cWM

 

Attacking Input validations (All injections, XSS and mics)

HTTP verb tampering

 

Introduction HTTP verb tampering https://www.youtube.com/watch?v=Wl0PrIeAnhs
HTTP verb tampering demo https://www.youtube.com/watch?v=bZlkuiUkQzE

HTTP parameter pollution

Introduction HTTP parameter pollution https://www.youtube.com/watch?v=Tosp-JyWVS4
HTTP parameter pollution demo https://www.youtube.com/watch?v=QVZBl8yxVX0

Cross site scripting

 

What is XSS? (PortSwigger) https://www.youtube.com/watch?v=cbmBDiR6WaY
Reflected XSS Demo https://www.youtube.com/watch?v=r79ozjCL7DA
Stored XSS Demo https://www.youtube.com/watch?v=oHIl_pCahsQ
DOM Based XSS Explained https://www.youtube.com/watch?v=SHmQ3sQFeLE
XSS Filter Evasion Cheat Sheet https://owasp.org/www-community/xss-filter-evasion-cheatsheet](https://owasp.org/www-community/xss-filter-evasion-cheatsheet)

SQL injection

 

SQL Injection Master Course (Complete Series) https://www.youtube.com/watch?v=243tripa-pI&list=PLk_nB42gPc_c_r2a-sY2y5sIIZ3nYa-hO](https://www.google.com/search?q=https://www.youtube.com/watch%3Fv%3D243tripa-pI%26list%3DPLk_nB42gPc_c_r2a-sY2y5sIIZ3nYa-hO)

 

NoSQL injection

Introduction to NoSQL injection https://www.youtube.com/watch?v=h0h37-Dwd_A
Attacking NoSQL databases https://www.youtube.com/watch?v=lcO1BTNh8r8

XPath and XML injection

What is XPath Injection? https://www.youtube.com/watch?v=L2k3223i-w8
What is XML External Entity (XXE) Injection? (PortSwigger) https://www.youtube.com/watch?v=g2ey7ry8_CQ
XXE Demo https://www.youtube.com/watch?v=3B8QhyrEXlU](https://www.youtube.com/watch?v=3B8QhyrEXlU)

LDAP injection

Introduction and Practical Demo https://www.youtube.com/watch?v=-TXFlg7S9ks

OS command injection

 

What is OS Command Injection? (PortSwigger) https://www.youtube.com/watch?v=v_R0p3n_5I8
OS command injection demo in bWAPP https://www.youtube.com/watch?v=qLIkGJrMY9k

 

File Inclusion (LFI/RFI)

Local File Inclusion (LFI) Explained https://www.youtube.com/watch?v=kcojXEwolIs
Remote File Inclusion (RFI) Explained https://www.youtube.com/watch?v=MZjORTEwpaw

HTTP splitting/smuggling

What is HTTP Request Smuggling? (PortSwigger) https://www.youtube.com/watch?v=bVaZWHrfiPw
HTTP Request Smuggling Demo https://www.youtube.com/watch?v=mOf4H1aLiiE

Generating and testing error codes

Forcing Error Messages with Burp Intruder https://www.youtube.com/watch?v=LDF6OkcvBzM

Weak cryptography testing

 

SSL/TLS weak configuration explained https://www.youtube.com/watch?v=Rp3iZUvXWlM
Testing for Weak SSL/TLS Ciphers with Nmap https://www.youtube.com/watch?v=slbwCMHqCkc
Test SSL/TLS security with Qualys SSL Labs https://www.youtube.com/watch?v=Na8KxqmETnw
Sensitive information sent via unencrypted channels https://www.youtube.com/watch?v=21_IYz4npRs

Business logic vulnerability

 

What is a business logic flaw? https://www.youtube.com/watch?v=ICbvQzva6lE
How To Identify Business Logic Flaws https://www.youtube.com/watch?v=FJcgfLM4SAY
Business Logic Flaws: Attacker Mindset https://www.youtube.com/watch?v=Svxh9KSTL3Y
Business Logic Exploits: Data Leakage https://www.youtube.com/watch?v=qe0bEvguvbs
Demo 1 - Excessive trust in the client https://www.youtube.com/watch?v=yV7O-QRyOao
Demo 2 - Insecure Password Reset https://www.youtube.com/watch?v=A8V_58QZPMs
Demo 3 - Logic Flaw Bug Bounty Example https://www.youtube.com/watch?v=1pvrEKAFJyk
HackerOne Report - Logic flaw on password reset https://hackerone.com/reports/145745
HackerOne Report - Business Logic Flaw allows adding credits https://hackerone.com/reports/430854

bottom of page