As security professionals, we are often called upon to assess web delivered applications and/or services—the key technologies behind modern service delivery. Their security posture can make or break a company. In this lab you’ll speed up the assessment process using hands-on “cheats.” We will highlight the use of ZAP and Autosploit, as well as comparing standard and cheating to win methodologies.
Learning Objectives: 1: Discover techniques to simplify web application testing. 2: Gain an understanding of how an adversary attacks an application. 3: Explore the information needed to help management and auditors understand web app testing.