FavouritesAdd to Wish List
FavouritesAdd to Wish List
from58.00GBP/ h

Lesson 03: Web Security Threat Analysis (Lesson 03 of Web Penetration Testing Series)

This lesson is the third lesson of the Web Penetration Testing Series. This lesson covers the following topics:

- Web Application Security Overview
- Security Principles
- Attack Anatomy
- Threat Modeling
- STRIDE Methodology
- DREAD Methodology
- Attack Trees

This lesson is followed by a 02 hours lab practical session.

Extra information

a personal laptop/pc is required with Oracle Virtual Box and Kali Linux pre-installed. Good RAM (memory) speed and a good internet connection is recommended.

Location

Online via webcam
At teacher's location: Almada Street, Hamilton, Scotland, UK
At student's location: Around Glasgow, United Kingdom

|
Use ⊞+wheel to zoom!
+

General info

Skills:
Age:
Teenagers (13-17 years old)
Adults (18-64 years old)
Seniors (65+ years old)
Student level:
Beginner
Intermediate
Duration:
60 minutes
90 minutes
120 minutes
The class is taught in:English

About Me

I am working as a Lecturer (Assistant Professor) in Cyber Security, in one of a renowned university here in Scotland, the UK. I am associated with the Higher Education Academy (HEA) UK as a full Fellow. Additionally, I am associated with Kingston University London as an External Examiner for their undergraduate courses in Cybersecurity, Digital Forensics, Computer Sciences, and Multimedia Technology. I am also associated with the University of London as a Course Mentor/Tutor for their distance learning/online undergraduate courses in Computer Sciences. I am specialized in Digital Authentication and Security, Command and Control Systems (C2/C3/C4i) Security, and Cloud Computing Hybrid Authentication. I am also the Founder and CEO of Security Essential Scientific Research and Training group (SESRT) in Sydney, Australia. I have earned my PhD in Computer Science with specialization in Cyber Security from University Technology Malaysia (UTM). I am an active member of IEEE, an Academic Initiative member for IBM (UK), Authorized Profile Administrator (APA) for IBM Partner-World (UK), member of American Association of Science and Technology (AASCIT) US, and a member of International Association of Science and Technology for Development (IASTED) Canada. I have collaborations with Cyber Security Group in Coventry University (UK), Pervasive Computing Group in University Technology Malaysia, Artificial Intelligence Center for Advanced System (CAS) and Center of Excellence in Information Assurance (CoEIA) in King Saud University, Saudi Arabia. I am currently supervising Postgraduate (PhD/M.Sc.) students and Undergraduate study project students as their primary supervisor here in UWS. I am also serving as an Editor and Reviewer to many ISI/SCI-E highly ranked Journals and Flagship Conferences.

Education

Postgraduate Certificate in Academic Practice from the University of the West of Scotland (UK), PhD (Computer Sciences) from University Technology Malaysia (Malaysia), and an M.Sc. and Bachelors in Computer Sciences.

Experience / Qualifications

With a PhD in Computer Sciences and more than 16 years of teaching and research experience in Computer Sciences, Software Engineering and Cyber Security, I am a Postgraduate Certified in Academic Practice (UK) and a Full Fellow of Higher Education Academy (UK).

Reviews (1)

The lessons I have taken with Dr Zeeshan have been a great approach to the cybersecurity field, he is always available for help and has a deep knowledge of the things he teach.
This lesson is the fifth lesson of the Web Penetration Testing Series. This lesson consist of the following topics: - Cryptography Overview - Modern Cryptography - Steganography v/s Cryptography - Encoding and Decoding - Symmetric v/s Asymmetric Cryptography - Message Authentication and Hashing This lesson is followed by a two hours practical lab session.
This lesson is the fourth lesson of the Web Penetration Testing series. This lesson consist of the following topics: - Command Injection - Code Injection - Blind Xpath Injection - Brute Force - Risk Factors and Examples - Frequency Analysis This lesson is followed by a two hours lab practical session.
This lesson is the sixth lesson of the Web Application Penetration Testing series. This lesson is going to cover the following topics: - File Inclusion - Types of Inclusion - Inclusion in Web Development Languages - File Upload - Unrestricted File Upload - Risk Factors - Protection and Bypassing Methods - Prevention Methods - SQL Injection This lesson will be followed by 02 hours of the practical lab session.
This lesson is the last lesson of the Web Application Penetration Testing Series. The lesson cover the following topics: - Cross-Site Scripting (XSS) - XSS Reflected Attacks - XSS Stored Attacks - Other XSS Vulnerabilities - Protection against XSS Attacks This lesson is followed by two hours of the practical session.
This lesson is the first lesson of the Web Application Penetration Testing series. This lesson is going to provide a complete overview of the series and all the topics covered in this series. Following are the topics which will be covered in this series: - Lesson 02: Web Application Security Architecture - Lesson 03: Web Security Threat Analysis - Lesson 04: Brute Force and Command Injection - Lesson 05: Cryptography and File Inclusion - Lesson 06: SQL Injection My Profile ::: I am working as a Lecturer (Assistant Professor) in Computing and Cybersecurity, with a renowned university in the UK. I am associated as a Full Fellow with the Higher Education Academy (HEA), the UK. Additionally, I am associated with Kingston University London as an External Examiner for their undergraduate courses in Cybersecurity, Digital Forensics, Computer Sciences, and Multimedia Technology. I am also associated with the University of London as a Course Mentor/Tutor for their distance learning/online undergraduate courses in Computer Sciences. I am specialized in Digital Authentication and Security, Command and Control Systems (C2/C3/C4i) Security, and Cloud Computing Hybrid Authentication. I am also the Founder and CEO of Security Essential Scientific Research and Training group (SESRT) in Sydney, Australia. I have earned my PhD in Computer Science with specialization in Cyber Security. I am an active member of IEEE, an Academic Initiative member for IBM (UK), Authorized Profile Administrator (APA) for IBM Partner-World (UK), member of American Association of Science and Technology (AASCIT) US, and a member of International Association of Science and Technology for Development (IASTED) Canada. I have collaborations with Cyber Security Group in Coventry University (UK), Pervasive Computing Group in University Technology Malaysia, Artificial Intelligence Center for Advanced System (CAS) and Center of Excellence in Information Assurance (CoEIA) in King Saud University, Saudi Arabia. I am currently supervising Postgraduate (PhD/M.Sc.) students and Undergraduate study project students as their primary supervisor here in UWS. I am also serving as an Editor and Reviewer to many ISI/SCI-E highly ranked Journals and Flagship Conferences.
This lesson is lesson 02 of the Web Penetration Testing series. It covers the following topics: - Web Application Security Architecture Overview - Web Application Security Architecture Working - Web Application Security Architecture Components - Web Server Architecture - Layered Approach - Service-Oriented Architecture - Cloud Computing - Fog/Edge Computing This lesson is followed by two hours of the practical lab session.

Ask a question

Send a message explaining your needs and Dr Zeeshan will reply soon:
The more detail, the better.
Ex. "Hi, when are you available to meet for a lesson?"

Availability of a typical week

(GMT -04:00) New York
MonTueWedThuFriSatSun
0              
1              
2              
3              
4      Wednesday at 4:00  Thursday at 4:00    Saturday at 4:00  Sunday at 4:00
5      Wednesday at 5:00  Thursday at 5:00    Saturday at 5:00  Sunday at 5:00
6      Wednesday at 6:00  Thursday at 6:00    Saturday at 6:00  Sunday at 6:00
7      Wednesday at 7:00  Thursday at 7:00    Saturday at 7:00  Sunday at 7:00
8      Wednesday at 8:00  Thursday at 8:00    Saturday at 8:00  Sunday at 8:00
9      Wednesday at 9:00      Saturday at 9:00  Sunday at 9:00
10      Wednesday at 10:00      Saturday at 10:00  Sunday at 10:00
11      Wednesday at 11:00      Saturday at 11:00  Sunday at 11:00
12        Thursday at 12:00      
13        Thursday at 13:00      
14              
15              
16              
17              
18              
19              
20              
21              
22              
23              
from £58At teacher's location
from £58Online via webcam
from £69At student's home

Good-fit Instructor Guarantee


If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.

Online reputation

  • Instructor since July 2020
  • Phone number verified

Availability of a typical week

(GMT -04:00) New York
MonTueWedThuFriSatSun
0              
1              
2              
3              
4      Wednesday at 4:00  Thursday at 4:00    Saturday at 4:00  Sunday at 4:00
5      Wednesday at 5:00  Thursday at 5:00    Saturday at 5:00  Sunday at 5:00
6      Wednesday at 6:00  Thursday at 6:00    Saturday at 6:00  Sunday at 6:00
7      Wednesday at 7:00  Thursday at 7:00    Saturday at 7:00  Sunday at 7:00
8      Wednesday at 8:00  Thursday at 8:00    Saturday at 8:00  Sunday at 8:00
9      Wednesday at 9:00      Saturday at 9:00  Sunday at 9:00
10      Wednesday at 10:00      Saturday at 10:00  Sunday at 10:00
11      Wednesday at 11:00      Saturday at 11:00  Sunday at 11:00
12        Thursday at 12:00      
13        Thursday at 13:00      
14              
15              
16              
17              
18              
19              
20              
21              
22              
23              
from £58At teacher's location
from £58Online via webcam
from £69At student's home

Good-fit Instructor Guarantee


If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.

Share


Hammad
Professional Python Tutor with immense Interest in Data Science and Deep Learning
Hey, This is Hammad, I'm a Python Developer and I am working on Python for almost 2 years😇. I will teach you a Full Beginner's Computer Science: Python Course covering from the basics to advanced level programming. My bachelor's in Computer Science is in progress and use python on a regular basis in Data Science, Deep Learning Programming. Teaching Methodology I also give online tuition, my teaching methodology mainly involves explaining concepts with examples by using Jupyter Notebooks. Then I practice one or two questions with the student. Then I give questions to students through sharing Notebooks on screen and ask them to solve on their own. I help them out if they are stuck and then we discuss the answers. This helps in having an interactive class and you will surely not be bored with me and will start liking Python even more😊. General Course Outline: //Python 1 // Print Variables. Logical Operators. Comparison Operators. Comparison Operators If/Else Statements Comments. User Input. List and List’s Functions. List Slicing. Tuples. //Python 2 // For Loops. Nested For Loop. Break, Continue, Pass. Type Casting. Sets. Dictionary. //Python 3// Functions While Loops. Exceptions. File I/O. CSV file. JSON File. Learning Python has never been so easy, enjoyable, and affordable! Don’t lose one more second when you can start learning Python right now! More and More people are doing it. Are you ready to embrace this wonderful experience? Get Access Now! Best Regards, Hammad

Roman
Computer Science and Programming ONLINE Class for all ages.
If you want to start learning computer science and programming or if you need a tutor to help you with computer science in high school, then look no further. I am a qualified high school teacher with many years of experience in teaching and tutoring at all levels. My lessons are engaging, fun, and student-focused and I am using a vast library of tools and media to get the best experience and results possible. Feel free to contact me at any time.

Christopher
Maths and Computer science Tutoring/ Test preparation
Hello! My name is Christopher and I am currently studying Computer science at TU Delft. I am able to tutor in both Maths and Computer Science at any elementary or High school level and have experience teaching a range of syllabus. Qualifications: - A levels: -A* in Maths - A* in Computer Science - A* in Music - Certified Microsoft Innovative Educator Experience: ZVEZA PRIJATELJEV MLADINE LJUBLJANA (ASSOCIATION FOR FRIENDS OF YOUTH) ZPM is an association in Slovenia that aims to help underprivileged children in many different ways including food packets, after-school clubs, and tutoring. I originally started as a volunteer in 2016 and since then I have helped countless students with their school work; most commonly in Maths but also other subjects like Physics, English, and Chemistry. Later my position developed into employment where I would run after school clubs to help the children build confidence and talk about their emotions, make fun programs for summer camps, and of course, I continued with tutoring many children GIRLS DO CODE Girls Do Code is an organization in Slovenia that aims to get more women into STEM, they believe that this interest has to start in childhood and therefore they offer lessons in Computer Science to over 300 girls. This cause was something that I thought was incredibly important and so I became a volunteer for their organization. This entailed teaching a group of 10 girls the basics of Computer Science in a fun and creative way and was a very rewarding experience. Through my training for Girls Do Code, I was certified by Microsoft as an Innovative Educator. I currently work as a Maths teaching assistant at an international school in the Netherlands where I work with children struggling with maths in small groups. Please don't hesitate to reach out if you have any questions!

Tom
Mathematics and computer science accessible to all
Need a catch-up, tutoring, private lessons or help with homework in mathematics? In computer science ? In logic? I'm here for you! I offer you a personalized approach; because there is no one method that works for everyone, I adapt to the needs and requests of each student (and their parents). The first hour of class will be used to define the student's needs, deadlines and strengths. My courses are aimed at secondary school students of all levels, higher education students outside technical courses (engineering, physics, mathematics, etc.) and anyone wishing to refresh or strengthen their knowledge in mathematics and computer science. Through my reading and my studies in computer science at the École Polytechnique de Louvain, I have amassed a quantity of knowledge in mathematics and computer science that it would be a shame not to share :) Being a student myself, I know the difficulties that certain subjects can cause and the lack of pedagogy of certain teachers. I look forward to working alongside you and unlocking your skills :) I am a master's student in computer science at the École Polytechnique de Louvain (UCLouvain), with a bachelor's degree. Naturally curious, I supplemented my course in computer science with numerous courses in physics (classical and quantum) and logic. I have also been brought to work with people from many backgrounds in various contexts, I learned a great adaptability. I have been volunteering for a long time helping friends and acquaintances in the success of their studies and I hope to be able to use this experience for the benefit of your success :)

Daniele
Private lessons for Computer Science, Java, Python, Javascript, React, Angular, Node
I'm a professional and young software engineer working in Munich, Germany. I have completed many different enterprise projects that came to life and are accessed by thousands of users. In this class, we can cover any general computer science topic related to high school and university exams, as well as real-life enterprise project consultancy. I have been teaching for many years and I have adopted a way of learning with "ELI5": "Explain like I'm five". I'm gonna explain hard concepts in easy and real-world examples. We're not just gonna learn a language or topic, but learn how to learn fast and adapt it in every aspect. I'm a passionate software developer and I will make you love the subject by teaching it in a fun and successful way. Please get in touch with me to let me know what kind of help you need. I'm here for you!

Marek
Distance computer courses, Windows, Mac OS, iOS, etc.
Specialist, graduate trainer, gives courses in computer software and remote computer use. It doesn't matter what type of computer you have. All current software in the world of Windows, Mac, iPad, etc. For the connection we use the free and easy software, WhatsApp, Sky, Zoom, etc. Very effective courses for people of all ages.

Amandine
Mastering IT for your daily needs
Hello, You are an adult and you need the technology to take steps or take actions. But it seems difficult to see insurmountable on your own. Arm with your notebook, you would like us to explain you step by step and know how to reproduce in order to gain confidence and autonomy! That's good, I'm able to guide you and explain what the platforms / sites expect from you! For example, how to lighten a file so that it is accepted on official sites? What are the different file formats? What are the tips to save time or make your job easier? I have a European license for computer graphics (design using the computer) and the handling and use of the different software (in French and in English) does not scare me. I have been helping those around me for many years, I have also learned to create tutorials. The language barrier is not a barrier. I have patience, curiosity and I am a teacher. And above all, I will create real situations drawn from our learning in order to assess your progress, give feedback and anchor your new skills! Take a first lesson in order to get to know each other and understand your needs, whether they are one-off or part of a longer course. Hope to meet you ! Amandine

Laurent
Cybersecurity - Information systems security
This course is intended for cybersecurity enthusiasts. In this course, we will come back to the fundamental aspects of systems security. As the best way to learn is through practice, we will put into practice the knowledge you gain in exercises based on real world scenarios, from understanding attacks to hacking machines. This course will also give you a good understanding of the Linux operating system (Kali Linux distribution) as well as the different tools used during computer attacks.

François
Computer Tutoring - Basic to Advanced
Tailor-made training for: *Office (office suite, word, excel,...) *Internet, emails, network, wifi... *Computer security, protection, data recovery * Programming in java, CSharp, php, css, html... As a professional computer scientist, I have extensive experience in tailor-made training to meet the specific needs of each client!

Abdullah
How do you make a Web application? How do you automate business processes? How do you write an API system?
Do you also want to delve into complex API systems? Or do you want to write a central Web application that you can access from any device? Or are you thinking of how can I automate administrative work? I'll help you get started. We make a step-by-step plan together. Are we going to work with a framework such as Laravel, Symfony or are we going to deepen our knowledge of PHP? How do we create a database? How does Oracle or MySQL work? How about Scrum and Git? Which IDE are we going to use? We go through everything. You decide what you want to delve into. I'll help you discover your strengths. We go at your pace and you develop your own style.

Simone
Digital Marketing and Advertising & Web Development Consultant for ZZP (Freelancers)
As a Business Development Manager for a Software House and Digital Marketing & Web Development Agency, I have developed essential skills and knowledge on how to create and to manage the Marketing & Advertising as well as the Digital business of Start-ups, SMEs and ZZP. Market Experience 1) Italy 2) The Netherlands 3) Belgium My consultacies/lessons are about: 1) Business Analysis 2) Website Analysis 3) Marketing Plan 4) Web Marketing Development 5) Digital Marketing & Advertising 6) Brand Building & Brand Management 7) Digital Identity Building & Digital Identity Management 8) Social Media 9) E-commerce For each of these points I can provide a Professional Analysis as well as a Business Proposal.

Reza
HTML5 for beginners and intermediate web enthusiasts
The basis of web development is HTML. You'll need HTML to start making your website from ground up. I have been an enthusiastic HTML programmer since the early ages of web. During my course you will not only learn how to make responsive web sites, but also you can get your hand on some basics of relevant technologies such as PHP and MySQL.

Ilias
Games, animations and interactive stories with Scratch (children and teenagers)
Are you dreaming of creating your own games, animations or interactive stories? This course aims to enagage learners regardless of their programming experience. The course for beginners starts with a description of the interface and how you can import or create various backgrounds or objects. An introduction to basic command blocks follows, and as the course progresses, learners are given many opportunities to be creative, practise analytical and critical thinking, and combine various command blocks to add functionality to their programs. The course also aims to foster effective communication, as learners have the opportunity to share their creations on Scratch community, receive feedback and exchange ideas with other members. This course is suitable for children and teenagers.

Kaoutar
programming courses: R programming and statistical treatment
I specialize in tutoring computer programming in different computer language, I have a large experience as a tutor in a different country, R programming is one of the most used software and language for statistical treatment. My goal is to keep students challenged but not overwhelmed. I assign homework after every lesson.

Mehdi
Computer Science, Algorithmic and Programming Tutoring
I am a computer engineer and I offer courses to students who wish to consolidate their theoretical knowledge and practical skills in computer science. The courses are adaptable according to your needs and the field of computer science that you wish to consolidate the most. However, I suggest you choose one of the following specialty areas that I master: Algorithmics, Programming (C / C ++, Java, C #, Python), Web (HTML, CSS, Javascript, Ajax, XML, etc.), Data structure . I am an engineer in computer science, I offer courses to students who wish to consolidate their theoretical knowledge and practical skills in computer science. The courses are adapted according to your needs. However, I suggest you to choose between the next areas that suits you: Algorithmic, Programming (C / C ++, Java, C #, Python), Web (HTML, CSS, Javascript, Ajax, XML, etc), Data structure.