Web App Hacking: Cookie Attacks
Pluralsight
Course Summary
In this course, you will learn how severe consequences can happen as a result of insecure cookie processing. You will see how cookie attacks work in practice and how to test web applications for various cookie processing flaws.
-
+
Course Description
Cookies are interesting for attackers because of the sensitive data they store. This course, Web App Hacking: Cookie Attacks, will teach you how to avoid the severe consequences of insecure cookie processing. First, you'll learn how cookies with sensitive data can leak over insecure channel. Next, you'll learn how the attacker can hijack cookies remotely. You'll also learn about weaknesses in cookie lifecycle and see one of the most underestimated cookie attacks - XSS via cookie. Finally, you'll learn how the attacker can tamper remotely with cookies of the user. By the end of the course, you'll know how cookie attacks work in practice and how to test web applications for various cookie processing flaws. What's more, you will learn how to process cookies securely.
-
+
Course Syllabus
Course Overview- 1m 29s
—Course Overview 1m 29sIntroduction- 6m 21s
—Introduction 6m 21sLeakage of Cookie with Sensitive Data- 8m 3sCookie Hijacking- 9m 37sWeaknesses in Cookie Lifecycle- 11m 37sUnderestimated Risk: XSS via Cookie- 11m 36sRemote Cookie Tampering- 8m 33sSummary- 5m 25s
