Discover additional attacks against web apps using weak or broken authentication methods and how cross-site scripting can be used to execute code.
Certified Ethical Hacker - CEHv10: Common Web App Threats Part 2
- expose the dangers of broken and weak authentication methods and data leaking with poor or no encoding
- use cross-site scripting (XSS) to execute code and the dangers of using Indirect Object References (IDOR)
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.