Slide Overview
Session 1
Intro
Burp Suite
Known Vulnerabilities
Access Control
Session 2
Security Misconfiguration
Cross-site scripting (XSS)
Cross-site Request Forgery
Unvalidated Redirects and SSRF
Session 3
SQL Injection
Path Injection
Command Injection
Sensitive Data Exposure
Session 4
Broken Authentication
Insufficient Logging and Monitoring
XML External Entities (XXE)
Insecure Deserialization