Modullarga qaytish
Module 07
Web Application Security
OWASP Top 10: XSS, SQLi, IDOR, CSRF, SSRF va boshqalar.
5 dars~115 daq.Simulyator komandalar
01
HTTP, headers, cookies
Davom etishWeb hujumini tushunish uchun avval protokolni biling.
15 daq.boshlang'ich3
02
SQL Injection
Foydalanuvchi kiritmasini SQL'ga aralashtirish — klassik OWASP #1.
30 daq.o'rta3
03
XSS (Cross-Site Scripting)
Brauzerda JS bajarish: reflected, stored, DOM-based.
25 daq.o'rta3
04
IDOR, CSRF, SSRF
Top zaifliklar: ID o'zgartirish, soxta so'rov, server tomon SSRF.
25 daq.o'rta2
05
ZAP, WFuzz, Dirbuster
Zaiflikni avtomatik aniqlash va yashirin yo'llarni topish.
20 daq.o'rta3