취미로 해킹#1(OverTheWire - Bandit)
장용하
검은 화면에서 알 수 없는 리눅스 명령어들을 입력하는 사람을 보고 매력을 느낀 적은 있지만, 어디서부터 어떻게 해야 할지 몰라 막연한 마음이었다면 이 강좌를 통해 도움을 받으실 수 있습니다.
초급
Linux, 시스템 해킹
BEST
Hacking as a hobby #3 (WebGoat)
Covering the content of WebGoat, the classic wargame of web hacking, we have translated and solved all the lessons and challenges from beginning to end. We provide all the tools and data needed to solve the challenges, starting with setting up the practice environment.
Reviews from Early Learners
What you will learn!
Ability and acumen to discover web application vulnerabilities based on OWASP Top 10.
Computer science knowledge relevant to each challenge.
Hacking as a hobby, hacking as a hobby.
※ "Hacking as a Hobby" content only focuses on legal hacking to contribute to a safe information security ecosystem.
< To view the course content in book form: Paper book/e-book (link) >
Hacking as a hobby #3 (WebGoat)
▶ Do you want to know how to hack a website ?
▶ Do you want to place a special order on a server or database hidden deeper beneath the surface?
▶ Would you like to try your hand at web-related challenges at hacking competitions ?
If so, you may be able to get help here.
Here, we'll master WebGoat, a classic web hacking wargame . Based on fully translated Korean materials, we'll follow every lesson from start to finish and practice the challenges.
They will be exposed to the hidden parts of the web browser. They will intercept and modify data transmissions, requesting special information from servers. They will even access private pages that are inaccessible to the general public. They will extract personal information stored in databases as if it were a given . They will even use websites to deceive other users .
This course will teach you how to discover and mitigate various web-related security vulnerabilities . Specifically, it covers theory and practice on vulnerabilities related to SQLI, XXE, authentication bypass, JWT, XSS, IDOR, access control, deserialization, CSRF, vulnerable components, password reset, and HTML tampering.
To reduce any additional hassle, we'll help you set up a practice environment and provide all the tools and data you need to solve the challenge.
 |  |
 | |
[Q1] Which version of Webgoat do you use?
[Ans] We use M24 version with OWASP 2017 applied.
[Q2] I didn't take "Hacking as a Hobby #1-2." Is it okay to start with this course?
[Ans] Yes, that's not a problem. Course #2 focuses on general hacking experience, while course #1 focuses on system hacking. However, course #3 focuses on web hacking, so it's not directly related. However, course #5, which covers actual hacking competitions, covers a broader range of topics, including systems and the web, so the previous courses are not meaningless.
[Q3] What abilities will you gain when you complete the course?
[Ans] A website developed by a novice developer unfamiliar with security may seem like a toy. However, please note that this isn't the entirety of web hacking. It's about demonstrating a few skills based on key vulnerabilities . Now, you're finally ready to take action.
Note
- For questions, please use the Naver Cafe “ Hacking as a Hobby (bit.ly/cafecode848) (shortcut) ”.
- Textbooks are separate paid content (paper book/e-book) and can be purchased when needed ( see cafe notice (go to) ).
- Naver Cafe “Hacking as a Hobby” also regularly provides supplementary learning content.
Recommended for
these people
Who is this course right for?
For those who want to complete all the content of Wargame WebGoat.
Anyone who wants to learn hacking little by little as an academic hobby.
Anyone who wants to participate in domestic/international hacking competitions in the future.
Students in related departments who need to supplement their major knowledge.
Those who wish to pursue a career in information security.
Need to know before starting?
If you have experience writing Java programs, it may be helpful.
11,405
Learners
914
Reviews
118
Answers
4.7
Rating
9
Courses
ㆍ 정보보안기사
ㆍ "생활코딩! 파이썬" 도서 저자
ㆍ "취미로 해킹#N" 도서(+강의) 저자
ㆍ 한국외국어대학교 정보보안 담당 직원
ㆍ 미사일전략사령부 CERT 팀장(육군 학사#59)
ㆍ 한국공학대학교 컴퓨터공학 학사(4.42)
Curriculum
All
62 lectures ∙ (10hr 2min)
1. 1. Prologue
03:01
5. 5. General(1)
07:46
6. 6. General(2)
07:33
7. 7. General(3)
10:27
18. 18. XXE(1)
10:32
19. 19. XXE(2)
10:02
20. 20. XXE(3)
12:56
21. 21. XXE(4)
12:38
22. 22. XXE(5)
06:11
Published:
Last updated:
Reviews
All
23 reviews
4.6
23 reviews
$42.90
caliber50's other courses
Check out other courses by the instructor!
Similar courses
Explore other courses in the same field!
