Browsing Author

Yasser Aboukir

Yasser Aboukir is a State Engineer in Computer Science, an Information Security Consultant, as well as a researcher with InfoSec Institute. He is the co-founder of the Moroccan Cyber Security Challenge and a member of the OWASP Moroccan Chapter. Currently interested on topics related to Web Application Security, Penetration Testing Methodologies and Security Management Standards.

SQL Injection through HTTP Headers

During vulnerability assessment or penetration testing, identifying the input vectors of the target application is a primordial step. Sometimes, when dealing with Web application testing,

March 30, 2012 Application Security

Cookie-based SQL Injection

In this paper we will talk about a non-common vector of SQL injections. Did you say a “Cookie” ? A cookie, also known as an

March 05, 2012 Application Security

Award Winning Training From InfoSec

Be the first to hear of new free tutorials, training videos, product demos, and more. We'll deliver the best of our free resources to you each month, sign up here:

Want to learn more?? The InfoSec Institute Web Application Penetration Testing Boot Camp focuses on preparing you for the real world of Web App Pen Testing through extensive lab exercises, thought provoking lectures led by an expert instructor. We review of the entire body of knowledge as it pertains to web application pen testing through a high-energy seminar approach.

The Web Application Penetration Testing course from InfoSec Institute is a totally hands-on learning experience. From the first day to the last day, you will learn the ins and outs of Web App Pen Testing by attending thought provoking lectures led by an expert instructor. Every lecture is directly followed up by a comprehensive lab exercise (we also set up and provide lab workstations so you don't waste valuable class time installing tools and apps).

Get CWAPT Certified
Learn the Secrets of Web App Pen Testing in a totally hands-on classroom environment
Learn how to exploit and defend real-world web apps: not just silly sample code
Complete the 83 Step "Web App Pen Test Methodology", and bring a copy back to work with you
Learn how perform OWASP Top 10 Assessments: for PCI DSS compliance

VIEW WEB APP PEN TEST