Facets Demo New Batches Starting from Saturday... 22-10-2016
Search Course Here

Live Chat
WAPT online training

Web Application Penetration Testing(WAPT)


WAPT Web Application Penetration Testing is a method of evaluating the security of a Web Applications by methodically validating and verifying the effectiveness of application security controls. It focuses only on evaluating the security of a web application. The process involves an active analysis of the application for any weaknesses, technical flaws, or vulnerabilities.


  • Strong Programming skills & good knowledge of Web technologies (C, HTML, JAVA/.NET, PHP is an added advantage).


  • It is a 20 days program and extends up to 2hrs each.
  • The format is 40% theory, 60% Hands-on.

  • It is a 5 days program and extends up to 8hrs each.
  • The format is 40% theory, 60% Hands-on.
    Private Classroom arranged on request and minimum attendies for batch is 4.

course content

  • Introduction to Web Application
    • Types Of Web Application
    • Use Of Web Application
    • Advantage And Disadvantage Of Web Application
    • Design Your First Web Application
    • Common Attacks On Web Application
  • Introduction To Database
    • Introduction to Database
    • Different Types Of Database
    • Use Of Database
    • Advantages and Disadvantages of Database
    • Connecting Database With Web Application
    • Common Attacks On Database
  • Basics Of Web Application Programming
    • HTML
    • JavaScript
    • PHP
    • SQL
  • OWASP Top 10
    • SQL Injection
    • Cross Site Scripting
    • Broken Authentication & Session Management
    • Insecure direct Object References
    • Cross Site Request Forgery (CSRF)
    • Security Misconfiguration
    • Insecure Cryptographic Storage
    • Failure to Restrict URL Access
    • Insufficient Transport Layer Protection
    • Unvalidated Redirects and Forwards
  • Implementation of OWASP on DVWA,WEBGOAT
    • Overview of DVWA
    • Installation of DVWA
    • Introduction to WebGoat
    • Configuring WebGoat
    • Installation of Wamp Or Xampp
    • Demonstration Of OWASP Top 10 On DVWA & WebGoat
  • PHP & JAVA Injection
    • Introduction to PHP Injection
    • Introduction to JAVA Injection
    • Bypass Authentication using PHP & JAVA Injection
    • Injection of Malicious Script Using PHP & Java Injection
  • CMS Hacking(Joomla, WordPress)
    • CMS Overview
    • Introduction to Joomla & WordPress
    • Installation and Configuration of Joomla & WordPress
    • Control Panel Handling Of Joomla & WordPress
    • Your First Site In Joomla & WordPress
    • Hack CMS Using Vulnerable Plugings
    • Countermeasures
  • Automatic & Maunal Vulnerability Finding
    • Find Vulnerabilities Using Search Engines
    • Vulnerabilities Findings Using Browser Addons & Plugings
    • Tools For Finding Vulnerabilities
    • Countermeasures
  • Web Scanners & Proxy ( Hands on Practice )
    • Accunetix
    • Appscan
    • Netsparker
    • Havij
    • Webscarab
    • Burpsuite
    • Zap Proxy
  • Sniffing & DNS-ARP Poisioning
    • Cain & Abel
    • Xplico
    • Ettercap
    • Network Miner
  • Session Hijacking
    • HTTP Session Hijacking
    • HTTPS Session Hijacking
    • Cookie Stealing
  • URL & Website Virus Scanning
    • URL Filtering & Scanning
    • Web Site Scanning For Malicious Scripts
    • Safe Surfing & Downloading Tips
    • Browser Security
    • Designing Website Trackers
    • What are Web Site Trackers?
    • Custom Trackers
    • Web Sites for Online Tracking
    • Implementation of Tracker in Web Pages
  • Web Server(Apache, IIS) Vulnerability Testing
    • Common Vulnerabilities in Web Servers
    • Tool Based Testing
    • Manual Testing


WAPT Videos will be updated Soon
To Watch More Videos Click Here

Flash News

AngularJS New Batch Start From 09th OCT & 10th OCT.

Hadoop Dev New Batch Start From 10th OCT & 11th OCT.

IBM COGNOS TM New Batch Start From 11th OCT & 12th OCT.

Informatica Dev New Batch Start From 12th OCT & 13th OCT.

Mean Stack New Batch Start 13th OCT & 14th OCT.

SAP BODS new Batch Starting From 14th OCT & 15th OCT.

SAP S/4 HANA New Batch Start From 15th OCT & 16th OCT

Tableau New Batch Start From 16th OCT & 17th OCT


Facets Demo Training

Demo Schedule : 08:30P.M EST / 07:30P.M CST / 05:30P.M PST on 21st OCT & 06:00A.M IST on 22nd OCT
Email :
Rediff Bol :
Google Talk :
MSN Messenger :
Yahoo Messenger :
Skype Talk :