Web App Pen-testing & Bug Bounty Hunting

Teacher

Vansh Devgan

Co-instructor

Vansh Devgan

Category:

Bug Bounty, Cyber Security

Description Welcome to ESSENTIALS OF COMPUTER SCIENCE & WEB APPLICATION PEN TESTING. A course that teaches you practically, about web application security, protecting your websites from attacks, and reporting bugs for reward, if you found one. This course is made from scratch. So, if you do not have any knowledge about Website Hacking or Bug hunting then this is the course to go with. This course is not just based on a home lab environments like DVWA, BWAPP, and other vulnerable web applications, instead, this course is completely based on real-life security vulnerabilities that are reported on the crowdsourcing platform. This is the place, where people make thousands of dollars in a few hours by just reporting one big security vulnerabilities to big companies like Uber, Facebook, Google, Amazon, and Zomato. This course I designed specifically for people who want to earn online irrespective of there knowledge if you have zero knowledge in the field of cybersecurity as well as in programming we still got your back we are going to do everything from scratch whatever we need through this course and we promise you that it’s going to be great fun learning with us Requirements

Use computers at the basic level
Good Internet Connection
Windows, Linux, and MAC, all are good for this course
Curiosity To Learn More
Patience & Practice

Benefits

Certificate Available
Pentesting On Live Sites
Reports Template Available To Save Time
Doubt Class Every Sunday
Support For Getting First Bounty
Whatsapp Support

Introduction To Bug Bounty

What Are Bug Bounty Programs ?

What Are Crowd-Source Platforms?

Introduction To Bugcrowd and Hackerone [RECORDED]

Watch The Video To To Get Clear Concept About How To Use Bugcrowd & Hackerone & What Other Things You Need To Know Before Getting Started

Introduction To Toolkit

LIVE LAB SETUP [RECORDED]

Downloading & Installing Burp Suite Professional

Downloading and Install Kali Linux

Downloading Some Good Known Common Tools

Introduction To Computer Science Essentials

Learning Linux Basics [RECORDED]

Learning Burpsuite [RECORDED]

Learning about SSH

Broken Authentication & Session Management

Broken Auth And Session Managment [RECORDED}

Failure To Invalidate Session

Session Fixation

Authentication Bypass [Login Bypass]

Second Factor Authentication (2FA) Bypass [RECORDED]

Cleartext Transmission of Session Token

Weak Registration Implementation

Weak Login Function

CROSS-SITE REQUEST FORGERY (CSRF)

Complete CSRF ALL TYPES BYPASS [RECORDED]

JSON BASED CSRF [RECORDED]

CSRF To Account Takeover

CSRF To OAuth Misconfiguration

CSRF On Delete Account

CSRF On Profile Update

CSRF Bypass Tips

Broken Access Control

Rate Limit Issues [RECORDED]

Broken Access Control Complete [RECORDED]

IDOR [RECORDED ]

Server-Side Request Forgery [RECORDED]

SSRF ADVANCE [RECORDED]

Parmeter Tampering (Getting Product For Free)

Username / Email Enumeration

Server Security Misconfiguration

Misconfigured DNS

OAuth Misconfiguration

Mail Server Misconfiguration [SPECIAL SESSION]

Click-jacking [RECORDED]

UNSAFE File Upload [RCE] [RECORDED]

Sensitive Data Exposure

Exif Meta Data Not Stripped [RECORDED]

GitHub Recon Revised [RECORDED]

Token Leakage Vulnerability [RECORDED]

Sensitive Hardcoded Data [RECORDED]

Directory Brute forcing [RECORDED]

File Brute forcing

Cross-Site Scripting (XSS) [Mostly Lab Based]

COMMON BUGS V1 XSS [UNDERSTANDING LITTLE ABOUT JS]

COMMON BUGS V2 XSS PART 2 REFLECTED

COMMON BUGS V3 XSS PART 3 STORED DOM

COMMON BUGS V3 XSS PART 4 IMAGE. COOKIE REFER BASED

Server-Side Injection

LFI Prequsite [RECORDED]

Local File Inclusion [RECORDED]

Remote File Inclusion [IN SSRF RECORDED SESSION]

Command Injection [RECORDED]

SQL Injection [BASICS] [RECORDED]

XML External Entity Injection (XXE) [LAB] [RECORDED]

Awesome Bugs

2FA BYPASSS [RECORDED]

COMMON BUGS Special P2 Vulnerability [RECORDED]

COMMON BUGS V2 [RECORDED]

OAUTH MISCONFIGURATION [RECORDED]

Exploiting Misconfigured CORS SOP [RECORDED]

WEB CACHE POSINING [RECORDED SESSION]

Chaining CSRF XSS To Account Takeover

Chaining RFI To XSS

Reverse Engineering Android App [RECORDED SESSION]

Reconnaissance Is An Art [Mixed]

Introduction To Recon API Exploits [RECORDED]

Reconnaissance Part 2 GitHub Tools Installation [RECORDED]

Reconnaissance Part 3 Continue Digging Into JS FIles [RECORDED]

Reconnaissance Part 4 Fuzzing [RECORDED]

Reconnaissance Part 5 Shodan , Censys , Exploit DB [RECORDED]

Reconnaissance Part 6 WayBack One Liners [RECORDED]

Reconnaissance Part 7 Reversing Subdomain Takeover

What Is The Duration Of Course ?

The Duration, Of Course, Is Lifetime ! Yes It's For Real.

What If I Have Some Doubts ?

We will have a doubt session weekly on every sunday

What is Duration of Course ?

The Duration Of Entire Course Is 60-70 Hours

Why are you teaching if you are earning this much amount?

I love teaching and it's my passion and if was doing this just for sake of money and lying to you about earning then I would have been teaching this course again and again on live classes but it's my habit to teach do things one time with your 100% best. because the quality matters and as per your question my answer is simple I love teaching and sharing things .

Don’t you think the price is quite High?

a Big NO because by doing this course you are learning how to earn through bug hunting and you can redeem your full amount by reporting a single valid bug as my many students did it already.

I don’t have any programming language knowledge and moreover I don’t know about cybersecurity, should I enroll?

Yes, of course, you should enroll in this course will be from basic to scratch and it involves that you must have two things. 1-Good Internet Connection [512 Kbps Minimum] 2-Laptop / Computer

Who Is Course Instructor?

The instructor is not a celebrity or person you may know but the instructor has very good experience & various achievements in the field of Cyber Security & of course Bug Hunting also. For more details, You can visit Know Everything About Me On – https://vanshdevgan.com

What Is Bug Bounty Hunting ?

Bug hunting is one of the most sought-after skills in all of software. It’s not easy, but it is incredibly rewarding when done right. Like writing code, keep in mind that it takes persistence, a lot of feedback, and determination to become a successful bug bounty hunter. Think outside the box and do your utter best. You can earn pretty good reward starting from 100$ To $$$$$ there’s no upper limit to bounties you can earn

Is Whatsapp Support Lifetime?

Yes . we reply to everyone on whatsapp in group if you post an question i will get back to you with an answer within few hours .

Do I Need To Pay For New Videos In Course?

No , You can enjoy new videos for free it's an dynamic course and thanks for showing your interest in our course.

What Is Your Refund Policy?

We Will Initiate Full Refund If You Don't Exceed Watching 20% Of Course .

Greetings - One positive thing that has come about being locked down and not being allowed to leave the premises & house, is having additional free time to focus on exercising, learning a language, and working on building new course videos. For the last couple of months, I have seen there is only one field that isn't affected due to this pandemic covid19 which is cybersecurity !! people are still earning millions of $$$ with bug bounties so i thought i should also go ahead and share my knowledge with you guys so you can also learn the field of web application security & earn for living a better life One question that I get asked a lot, is how to avoid duplicates in bug bounties. The answer for that is very simple most of the bug hunters doing bug bounties are only focusing on low hanging fruits which is why they are getting duplicates I know it's quite complicated to learn some high-level vulnerabilities like ssrf but it's not impossible to learn if you know the basics very well so this course is focused to teach you from basics Additional Note - Kindly Go Through Video Lectures Only The Theory Content Will Be Updated Soon !! I hope everyone is staying safe and making use of their free time to learn something useful. See you in the discussions! Regards - Vansh Devgan

Be the first to add a review.

Please, login to leave a review

Add to Wishlist

Get course

₹12,500 ₹4,500

Enrolled: 156 students

Duration: 70 Hours

Lectures: 69

Video: 68 Hour

Level: Beginner

Monday	9:30 am - 6.00 pm
Tuesday	9:30 am - 6.00 pm
Wednesday	9:30 am - 6.00 pm
Thursday	9:30 am - 6.00 pm
Friday	9:30 am - 5.00 pm
Saturday	Closed
Sunday	Closed