LASCON X

(Paid Course)  - Ticket can be purchased at https://lascon-x-training.eventbrite.com

This course offering seeks to provide students a balance of practical theory and hands-on testing experience related to the assessment of web applications from the perspective of an offensive security consultant. The main goal is to communicate the mindset and methodology a professional penetration tester would leverage to comprehensively evaluate an application's security posture during a time-compressed client engagement. The course will guide students through a consistent, repeatable, and defined approach towards examining an application's attack-surface given a finite amount of resources. An emphasis will be placed on the efficient identification & verification of common web application vulnerabilities and the subsequent communication of remediation recommendations to clients. Among the main topics discussed will be automated and manual testing techniques related to initial reconnaissance, resource enumeration, session-handling, vulnerability scanning, authentication mechanisms, access controls, and business logic. The course will also touch on generic web application security best practices, issues impacting cross-site attacks, various advanced Burp Suite skills, and strategy behind providing the most value to customers given a short engagement time-frame. Hands-on labs will accompany each lecture component as the class works through an example of a real-world application assessment workflow. Students will get to work with vulnerable applications carrying common vulnerabilities inspired by ones discovered during real engagements. Once completed, students will possess the skills required to deftly navigate time-limited professional web application assessments and feel confident in their delivery of high-quality consultations their clients will benefit from and employers will reward. This class will make heavy use of the Burp Suite web proxy testing and scanning tool.

Course Outline
Day 1
- Introduction
-Consultant Considerations
- Initial Application Reconnaissance
- Session Handling
- Application Enumeration
- Vulnerability Scanning
- XSS, CSRF, & Same Origin Policy
- Security Headers
- Cookie Security
- Access Controls

Day 2
- Authentication Mechanisms
- Session Management Mechanisms
- File Upload Tests
- Business Logic
- Client-side controls
- Cryptographic Evaluation
- Comment Review
- Vulnerability Remediations
- Things we left out (further considerations)

Required Materials
Minimum course requirements:
- Firm understanding of the HTTP protocol.
- Familiarity with basic web application attack vectors, theory, and practice.
- Familiarity with web proxies (preferably Burp Suite) and similar tools.
Students are expected to bring a laptop with the following requirements:
- USB Port
- Minimum of 8GB RAM
- At least 30GB of free storage space
- VMWare Player or VMWare Fusion installed