Time
4 hours 20 minutes
Difficulty
Intermediate
CEU/CPE
5

Video Description

This lesson discusses the XSS lab. The lab will cover: • XSS discovery • XSS Exploitation • XSS Exploitation (bonus section)

Video Transcription

00:04
Welcome to cyber ery I'm Ramen. Evans and I will be your subject matter expert for Cyber Aires Web application penetration testing course. In this video we will be discussing
00:13
the cross site Scripting lab
00:15
is a total estimate time of 30 minutes to complete. This lab will be covered well, your cross site scripting Discovery Challenge. They cross the scripting, exploit tastes challenge and then a bonus challenge. So either using Vega or Zap scan the Web for pen testers Web page for across a scripting vulnerability. Once that vulnerability is found,
00:35
using a manual script, creating alert window and test out to see whether or not
00:39
can actually exploit that page.
00:42
Once you identify a successfully exportable page, generate a beef link. Using the exportable page once the link is generated, roused the generate link
00:53
and using the beef tools, take a snapshot of the of the host machine
01:00
through beef. For bonus work, serve a second PM From that second, VM brows that same malicious link that you generate it using the beef tools
01:10
in numerator data about that new host and also your local network. So it's covered across the scripting Discovery. Cross the scripting exploitation lab
01:19
and you're across a scripting exploitation lab. Bonus.
01:23
Happy acting. Everyone

Up Next

Web Application Penetration Testing

In this web application penetration testing course, SME, Raymond Evans, takes you on a wild and fascinating journey into the cyber security discipline of web application pentesting. This is a very hands-on course that will require you to set up your own pentesting environment.

Instructed By

Instructor Profile Image
Raymond Evans
Instructor