WEBVTT 0:00:04.200000 --> 0:00:08.680000 Hello everyone and welcome to the Advanced Web Application Penetration 0:00:08.680000 --> 0:00:11.080000 Testing course summary. 0:00:11.080000 --> 0:00:13.880000 So, if you have made it this far, well done. 0:00:13.880000 --> 0:00:17.960000 In this video, we are going to be going over what we have covered in this 0:00:17.960000 --> 0:00:24.080000 course and as I mentioned earlier on in this course, this is very important. 0:00:24.080000 --> 0:00:28.520000 The summary is a very important video because it allows us to again review 0:00:28.520000 --> 0:00:32.740000 what we have covered but more importantly for you, it allows you to actually 0:00:32.740000 --> 0:00:37.860000 see exactly what you have learnt and the skills that you have acquired. 0:00:37.860000 --> 0:00:43.100000 So, let's get started by revisiting the key concepts that again I highlighted 0:00:43.100000 --> 0:00:51.560000 in the course introduction where I sort of explained or laid out the key 0:00:51.560000 --> 0:00:57.780000 areas or the key subject matter areas that I wanted to cover in this course 0:00:57.780000 --> 0:01:02.500000 and as I have listed them here, they have not changed from what was in 0:01:02.500000 --> 0:01:06.580000 the introduction or the overview video. 0:01:06.580000 --> 0:01:11.080000 We wanted to cover or go through the web application penetration testing 0:01:11.080000 --> 0:01:16.240000 methodology. More importantly, go through it or get an understanding as 0:01:16.240000 --> 0:01:23.460000 to what the methodology is when it comes down to performing a web app 0:01:23.460000 --> 0:01:30.300000 and test but more importantly, also get a professional realistic grounded 0:01:30.300000 --> 0:01:35.060000 in reality, understanding as to what a web app and test is usually like 0:01:35.060000 --> 0:01:43.140000 and how changing requirements end up leading you to actually modify your 0:01:43.140000 --> 0:01:45.680000 methodology. So, we learnt quite a bit there. 0:01:45.680000 --> 0:01:50.820000 This of course also entailed planning web application pen tests and all 0:01:50.820000 --> 0:01:55.200000 the work that needs to go into that if you want to have a successful web 0:01:55.200000 --> 0:01:56.840000 application pen test. 0:01:56.840000 --> 0:02:01.680000 We then, you know, explored the pre engagement phase, the web app mapping 0:02:01.680000 --> 0:02:02.840000 and crawling phase. 0:02:02.840000 --> 0:02:07.820000 So, you know, what you do immediately after you begin the pen test reconnaissance 0:02:07.820000 --> 0:02:10.720000 analysis of the web application, etc. 0:02:10.720000 --> 0:02:15.580000 And we also explored session security, which again will become it's important 0:02:15.580000 --> 0:02:19.440000 or the reason we're covering it in this course will become apparent as 0:02:19.440000 --> 0:02:22.780000 we progress. So those are some of the key concepts. 0:02:22.780000 --> 0:02:27.460000 Now, I want to revisit again the learning outcomes or the learning objectives, 0:02:27.460000 --> 0:02:31.500000 if you will. And in this case, I'm sort of recapping them. 0:02:31.500000 --> 0:02:36.940000 What this slide essentially contains or lays out is what you should know 0:02:36.940000 --> 0:02:40.240000 and what you should be able to do by the end of the course. 0:02:40.240000 --> 0:02:41.680000 So very, very simple. 0:02:41.680000 --> 0:02:44.940000 You know, it actually lays it out for you right over here. 0:02:44.940000 --> 0:02:47.840000 So what you're essentially getting out of this course and hopefully you'll 0:02:47.840000 --> 0:02:50.860000 agree with the learning outcomes listed here. 0:02:50.860000 --> 0:02:54.540000 So number one, a solid understanding of the web application pen testing 0:02:54.540000 --> 0:02:59.120000 methodology, which again, as I said, we covered, you know, in quite some 0:02:59.120000 --> 0:03:01.300000 details. So I'm quite happy with that. 0:03:01.300000 --> 0:03:05.580000 You'll also have the ability to plan and orchestrate a web app pen test. 0:03:05.580000 --> 0:03:09.100000 Indeed, we did cover that quite extensively. 0:03:09.100000 --> 0:03:13.160000 We took a look at, you know, the various factors to consider when performing 0:03:13.160000 --> 0:03:15.800000 or when planning a pen test, et cetera. 0:03:15.800000 --> 0:03:21.480000 We also took a look at practically, you know, how to perform comprehensive 0:03:21.480000 --> 0:03:26.860000 thorough web application reconnaissance that also led to mapping web applications 0:03:26.860000 --> 0:03:29.320000 through various techniques. 0:03:29.320000 --> 0:03:32.880000 And we also, you know, got a solid understanding of session management 0:03:32.880000 --> 0:03:38.660000 and security. So hopefully by this point and in alignment with the learning 0:03:38.660000 --> 0:03:42.720000 outcomes listed here, you should be in agreement that, you know, we covered 0:03:42.720000 --> 0:03:44.380000 them quite well. 0:03:44.380000 --> 0:03:47.820000 But this is very important, as you can tell, it's always good to actually 0:03:47.820000 --> 0:03:51.480000 see how far you've come and what, you know, you actually know and what 0:03:51.480000 --> 0:03:55.320000 you're able to do, you know, at the end of the course that you maybe were 0:03:55.320000 --> 0:03:57.420000 not able to do before. 0:03:57.420000 --> 0:04:03.000000 All right. So that is the recap. 0:04:03.000000 --> 0:04:07.880000 I've listed out a couple of resources or the next steps that I sort of 0:04:07.880000 --> 0:04:12.240000 recommend on your journey to becoming a web app pen test and not just 0:04:12.240000 --> 0:04:14.520000 again going through this learning path. 0:04:14.520000 --> 0:04:19.560000 I should say a professional web app and tester, one of which is the OSP 0:04:19.560000 --> 0:04:23.480000 web security testing guide, which I covered in the EWPT. 0:04:23.480000 --> 0:04:27.560000 But more importantly, the OSP penetration testing checklist. 0:04:27.560000 --> 0:04:32.020000 And I just added an additional tool there called Kaido, which is an alternative 0:04:32.020000 --> 0:04:36.420000 to Burp Suite. That being said, that brings us to the end of this course. 0:04:36.420000 --> 0:04:40.460000 I really appreciate you going through this course and I'll be seeing you 0:04:40.460000 --> 0:04:42.140000 in the next course.