

from60.00GBP/ h
Lesson 06: File Inclusion, File Upload and SQL Injection (Lesson 06 of Web Penetration Testing Series)
This lesson is the sixth lesson of the Web Application Penetration Testing series. This lesson is going to cover the following topics:
- File Inclusion
- Types of Inclusion
- Inclusion in Web Development Languages
- File Upload
- Unrestricted File Upload
- Risk Factors
- Protection and Bypassing Methods
- Prevention Methods
- SQL Injection
This lesson will be followed by 02 hours of the practical lab session.
- File Inclusion
- Types of Inclusion
- Inclusion in Web Development Languages
- File Upload
- Unrestricted File Upload
- Risk Factors
- Protection and Bypassing Methods
- Prevention Methods
- SQL Injection
This lesson will be followed by 02 hours of the practical lab session.
Extra information
A personal laptop/pc is required with Oracle Virtual Box and Kali Linux pre-installed. Good internet connection and device memory is recommended.Location
Online via webcam
At teacher's location: Almada Street, Hamilton, Scotland, UK
At student's location: Around Glasgow, United Kingdom








|
Use ctrl + wheel to zoom!
General info
Age: | Teenagers (13-17 years old) Adults (18-64 years old) Seniors (65+ years old) |
---|---|
Student level: | Beginner Intermediate |
Duration: | 60 minutes 90 minutes 120 minutes |
The class is taught in: | English |
About Me
I am working as a Lecturer (Assistant Professor) in Cyber Security, in one of a renowned university here in Scotland, the UK. I am associated with the Higher Education Academy (HEA) UK as a full Fellow. Additionally, I am associated with Kingston University London as an External Examiner for their undergraduate courses in Cybersecurity, Digital Forensics, Computer Sciences, and Multimedia Technology. I am also associated with the University of London as a Course Mentor/Tutor for their distance learning/online undergraduate courses in Computer Sciences. I am specialized in Digital Authentication and Security, Command and Control Systems (C2/C3/C4i) Security, and Cloud Computing Hybrid Authentication. I am also the Founder and CEO of Security Essential Scientific Research and Training group (SESRT) in Sydney, Australia. I have earned my PhD in Computer Science with specialization in Cyber Security from University Technology Malaysia (UTM). I am an active member of IEEE, an Academic Initiative member for IBM (UK), Authorized Profile Administrator (APA) for IBM Partner-World (UK), member of American Association of Science and Technology (AASCIT) US, and a member of International Association of Science and Technology for Development (IASTED) Canada. I have collaborations with Cyber Security Group in Coventry University (UK), Pervasive Computing Group in University Technology Malaysia, Artificial Intelligence Center for Advanced System (CAS) and Center of Excellence in Information Assurance (CoEIA) in King Saud University, Saudi Arabia. I am currently supervising Postgraduate (PhD/M.Sc.) students and Undergraduate study project students as their primary supervisor here in UWS. I am also serving as an Editor and Reviewer to many ISI/SCI-E highly ranked Journals and Flagship Conferences.Education
Postgraduate Certificate in Academic Practice from the University of the West of Scotland (UK), PhD (Computer Sciences) from University Technology Malaysia (Malaysia), and an M.Sc. and Bachelors in Computer Sciences.Experience / Qualifications
With a PhD in Computer Sciences and more than 16 years of teaching and research experience in Computer Sciences, Software Engineering and Cyber Security, I am a Postgraduate Certified in Academic Practice (UK) and a Full Fellow of Higher Education Academy (UK).Reviews (2)
Dr. Zeeshan is very clear and easy to understand in his presentation. Knows exactly what your needs are and tailored his lessons to your needs.
The lessons I have taken with Dr Zeeshan have been a great approach to the cybersecurity field, he is always available for help and has a deep knowledge of the things he teach.
We are Computer Science Mentors, registered and recognised partners of Cisco and CompTIA in Scotland (UK). We would like to offer a complete Cybersecurity pathway from Beginner to Advanced and a guaranteed Job Offer from within our Cisco Networking Academy, subject to the completion of complete training, certification, and accreditation.
This program is dedicated to empowering professionals with high-demand Cybersecurity skills like Ethical Hacking, Penetration Testing, and System and Network Security. Its goal is to help them not only get specialised training and certification in Cybersecurity but also reach the Cybersecurity Associate level within 16-17 weeks.
This program aims to fill the high-demand gap in Cybersecurity through specialised training, certification and accreditation opportunities and provide Job opportunities for individuals and professionals to step into the lucrative Cybersecurity career and produce a specialised workforce in Cybersecurity to tackle the needs, requirements and expectations of the industry.
The program is based on simple five steps.
• STEP 1: From beginner to advanced level LIVE training in Ethical Hacking and Networking Defense.
• STEP 2: Full instructor-led and LIVE training in CCNA CyberOps.
• STEP 3: Providing Certification venue and opportunities to get certified in CCNA CyberOps (discounted voucher).
• STEP 4: Achieve CyberOps Associate accreditation.
• STEP 5: Receive a confirmed Job offer from Computer Science Mentors.
Objective: Equip students with foundational skills in ethical hacking and penetration testing to secure web applications, focusing on open-source tools and DVWA (Damn Vulnerable Web Application).
(Capstone Project: Website Penetration Testing Report)
Throughout the weeks, students will work on a capstone project where they will perform a comprehensive penetration test on a simulated website using DVWA. They will document their findings, create detailed reports, and suggest mitigation strategies. This project will be their portfolio piece to showcase their skills.
1. Week 1: Introduction to Information Security
- Topics covered: Cybersecurity Fundamentals, Introduction to Ethical Hacking, Basic Network Security, Introduction to Cryptography, Practical Cybersecurity Tips
2. Week 2: Introduction to Ethical Hacking
- Topics covered: Orientation and Course Overview, Setting Up a Virtual Lab, Key Tools and Software, Network Security Basics, Identifying Common Vulnerabilities, Exploring common network vulnerabilities, Hands-on practice with vulnerability scanning using OpenVAS.
3. Week 3: Website Penetration Testing Fundamentals with DVWA
- Topics covered: Website Architecture, Overview of how websites function, Introduction to client-server model and HTTP/HTTPS, Setting Up DVWA, Installing and configuring DVWA, Understanding the purpose and use of DVWA in penetration testing, SQL Injection with DVWA, Understanding SQL injection attacks, Practicing SQL injection techniques and defences using DVWA, Cross-Site Scripting (XSS) with DVWA, Understanding XSS attacks, Practising XSS techniques and defences using DVWA, Hands-on OWASP Top 10 with DVWA, Detailed exploration of the OWASP Top 10 vulnerabilities, Practical exercises to identify and exploit vulnerabilities using DVWA
4. Week 4: Advanced Penetration Testing Techniques
- Topics covered: Advanced Exploitation Techniques, Techniques for privilege escalation, Using Metasploit for advanced exploitation, Social Engineering Attack, Understanding social engineering, Practical examples of phishing and other attacks, Reporting and Documenting Findings, Importance of documentation in penetration testing, How to create detailed and professional reports, Ethical Considerations and Legal Aspects, Understanding the ethics of hacking, Legal implications and compliance, Project Presentation and Feedback, Students present their penetration testing report, Personalized feedback and improvement tips. ---
At the end of the 4 weeks,
• Students will have beginner-to-advanced knowledge about ethical hacking and penetration testing using open-source tools and DVWA.
• Students will have enhanced professional writing skills, and technical documentation skills along with research skills.
• Students will have a capstone project which will serve as a significant portfolio piece, demonstrating their practical skills and readiness for the cybersecurity job market
This lesson is the fifth lesson of the Web Penetration Testing Series. This lesson consist of the following topics:
- Cryptography Overview
- Modern Cryptography
- Steganography v/s Cryptography
- Encoding and Decoding
- Symmetric v/s Asymmetric Cryptography
- Message Authentication and Hashing
This lesson is followed by a two hours practical lab session.
Ask a question
Send a message explaining your needs and Dr Zeeshan will reply soon:
The more detail, the better.
Ex. "Hi, when are you available to meet for a lesson?"
Ex. "Hi, when are you available to meet for a lesson?"
Availability of a typical week
(GMT -04:00) New York
Mon | Tue | Wed | Thu | Fri | Sat | Sun | |
---|---|---|---|---|---|---|---|
0 | |||||||
1 | |||||||
2 | |||||||
3 | |||||||
4 | Wednesday at 4:00 | Thursday at 4:00 | Saturday at 4:00 | Sunday at 4:00 | |||
5 | Wednesday at 5:00 | Thursday at 5:00 | Saturday at 5:00 | Sunday at 5:00 | |||
6 | Wednesday at 6:00 | Thursday at 6:00 | Saturday at 6:00 | Sunday at 6:00 | |||
7 | Wednesday at 7:00 | Thursday at 7:00 | Saturday at 7:00 | Sunday at 7:00 | |||
8 | Wednesday at 8:00 | Thursday at 8:00 | Saturday at 8:00 | Sunday at 8:00 | |||
9 | Wednesday at 9:00 | Saturday at 9:00 | Sunday at 9:00 | ||||
10 | Wednesday at 10:00 | Saturday at 10:00 | Sunday at 10:00 | ||||
11 | Wednesday at 11:00 | Thursday at 11:00 | Saturday at 11:00 | Sunday at 11:00 | |||
12 | Wednesday at 12:00 | Thursday at 12:00 | Saturday at 12:00 | Sunday at 12:00 | |||
13 | Thursday at 13:00 | Saturday at 13:00 | Sunday at 13:00 | ||||
14 | |||||||
15 | |||||||
16 | |||||||
17 | |||||||
18 | |||||||
19 | |||||||
20 | |||||||
21 | |||||||
22 | |||||||
23 |
from £60At teacher's location
from £60Online via webcam
from £72At student's home
100% Satisfaction Guarantee
Good-fit Instructor Guarantee
If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.
Online reputation
- Instructor since July 2020
- Phone number verified
- Google connected
- X connected
Availability of a typical week
(GMT -04:00) New York
Mon | Tue | Wed | Thu | Fri | Sat | Sun | |
---|---|---|---|---|---|---|---|
0 | |||||||
1 | |||||||
2 | |||||||
3 | |||||||
4 | Wednesday at 4:00 | Thursday at 4:00 | Saturday at 4:00 | Sunday at 4:00 | |||
5 | Wednesday at 5:00 | Thursday at 5:00 | Saturday at 5:00 | Sunday at 5:00 | |||
6 | Wednesday at 6:00 | Thursday at 6:00 | Saturday at 6:00 | Sunday at 6:00 | |||
7 | Wednesday at 7:00 | Thursday at 7:00 | Saturday at 7:00 | Sunday at 7:00 | |||
8 | Wednesday at 8:00 | Thursday at 8:00 | Saturday at 8:00 | Sunday at 8:00 | |||
9 | Wednesday at 9:00 | Saturday at 9:00 | Sunday at 9:00 | ||||
10 | Wednesday at 10:00 | Saturday at 10:00 | Sunday at 10:00 | ||||
11 | Wednesday at 11:00 | Thursday at 11:00 | Saturday at 11:00 | Sunday at 11:00 | |||
12 | Wednesday at 12:00 | Thursday at 12:00 | Saturday at 12:00 | Sunday at 12:00 | |||
13 | Thursday at 13:00 | Saturday at 13:00 | Sunday at 13:00 | ||||
14 | |||||||
15 | |||||||
16 | |||||||
17 | |||||||
18 | |||||||
19 | |||||||
20 | |||||||
21 | |||||||
22 | |||||||
23 |
from £60At teacher's location
from £60Online via webcam
from £72At student's home
Good-fit Instructor Guarantee
If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.
Share
You are here
Similar classes
Gabriel
Cambridge Graduate & Google Developer - Programming Tutoring 1 on 1I am a Cambridge graduate in CS, with over 10 medals and national distinctions for competitive programming.
For over 5 years, I have helped hundreds of students discover how easy and beautiful Computer Science is:
- Assisted students in improving from a C to an A* grade.
- Helped motivated students qualify for the National Informatics Olympiad.
- Guided many achieve their target grades in A-Levels, even attaining the perfect score.
- Prepared for IB/IA, A-Levels, GCSE, University Entry, or equivalent.
- Assisted with specific projects at a professional level, including interview preparation.
All my success in Computer Science is due to my teachers, who knew how to inspire my passion and turn any concept into an easy-to-understand story. That's why I decided to help others further to elucidate the secrets of Computer Science and to smile with relief in the exam hall when they notice that they know how to solve all the subjects perfectly.
It's amazing how quickly a student can progress when the material is explained to them in their understanding.
I have a highly flexible schedule and can adapt to accommodate your needs.
If you have any questions about my teaching method, availability, or pricing, please don't hesitate to reach out.
I am here to assist you and provide the support you need :).
Reza
Systematic Reasoning and Logical Thinking for Computer ScienceYou will learn Systematic Reasoning & Logical Thinking which is a requirement for entering Computer Science program in many universities.
The book “Delftse Foundations of Computation” especially its second chapter will be the main source of our lesson, but other more in-depth books will be also covered if you want to improve even further on logical thinking.
The topics in our lesson include:
• Propositional Logic: Logical operators; Precedence rules; Logical equivalence; Implications in English; Exclusive or; Universal operators; Classifying propositions
• Boolean Algebra: Substitution laws
• Logic Circuits: Logic gates; Combining gates to create circuits; From circuits to propositions; Disjunctive Normal Form; Binary addition.
• Predicate Logic: Predicates; Quantifiers; Tarski’s world and formal structures;
• Deduction: Valid arguments and proofs; Proofs in predicate logic
If you have any additional questions before starting a class, please feel free to ask me. I am here to assist! :)
Robert
Excel lessons, at your place, at my place or remotely, at your best convenience!As a Franco-Belgian management teacher, I give Excel lessons with passion!
Whether remotely or face-to-face, I offer many examples and exercises to accompany you.
I travel without problem throughout the region of Brussels and its surroundings, for lessons of at least 2 hours. For France, courses are only given remotely.
Here are some key words that will be covered in my classes:
Scenario analysis, Year, Rounding, Today, Bdnb, Bdnbval, Bdsum, Search, Column, Copy/paste in values, Copy/paste with transposition, Consolidation, Date, Datedif, Determat, Dollar, Right, Righterg, Equiv, Esterror, Estna, Frequency, Filter (simple and advanced), Format of cells, Left, Large.Value, Printing of documents, Index, Indirect, Inversemat, Day, Weekday, Line, Matrix, Max, Maxa, Max.Si, Min , Mina, Mina.If, Formatting of cells and ranges, Month, Average, Average.If, Nb, Nb.If, Nbval, Naming of cells and ranges, No, Small.value, Product, Productmat, Protection of cells, Lookup (Lookup), Lookupv (VLookup), Lookuph (HLookup), If (If), If.Not.Disp, If.Conditions, Iferror, Sum, Sumproduct, Sum.If, Sum.If.Set, Substitute , Pivot tables, Sorting, Cell locking
Do not hesitate to contact me to organize your lessons according to your needs and availability. Together, we will develop your Excel skills in an efficient and personalized way.
Shaista
Shaista's cool Class💥 hurry up my little sweeties 💜💜Hey 👋 everyone i am your teacher my name is Shaista Salam 15 years old.Since i am studying to i will be generous and friendly to you .I am doing igcse level 1 but i really lonnged to share my knowledge with you all guys.I love computer science the most as my favourite.
Baia
Python & Django Development – From Beginner to Web App Developer🚀 Learn Python and Django to Build Powerful Applications 🚀
Want to master Python and develop real-world web applications with Django? Whether you're a beginner or looking to enhance your coding skills, this course will guide you step by step!
What You’ll Learn:
✅ Python Basics & Advanced Concepts – Learn syntax, data structures, OOP, and algorithms
✅ Django Framework – Build dynamic and scalable web applications
✅ Databases & APIs – Work with PostgreSQL, SQLite, and REST APIs
✅ Project-Based Learning – Apply concepts through hands-on coding and real projects
✅ Debugging & Best Practices – Learn clean coding principles and error handling
🔹 Who is this course for?
Complete beginners who want to start coding with Python
Developers looking to transition into backend or full-stack development
Students and professionals who want to build their own web applications
💻 Class Format:
- Live online sessions via Google Meet
- Interactive coding exercises & projects
- Personalized guidance based on your level
📩 Contact me to start your Python & Django journey today!
Mohamed
Data Engineering & Science: Packaging Python Projects & deployment tools either on premise or on Cloud (Amazon AWS)In this course, you will learn how to efficiently package, containerize, and deploy Python applications and microservices using Docker. The course covers fundamental Docker concepts, best practices for structuring Python projects, and strategies for building scalable and portable applications. Through hands-on projects, you will gain practical experience in creating Docker images, managing containers, and orchestrating microservices, enabling seamless deployment across different environments.
Contact me if you want to have more information about the course!
Wafa
Web development for beginners. Learn how to create your website/web applicationHello :
I am a full stack web developer and trainer in web development.
I regularly host web development training sessions for beginners.
I can train in HTML5, CSS3, JavaScript, PHP, MySQL, React JS, node JS.
- Design of HTML web pages
- Applying CSS styles
- Make the web pages "Responsive"
- Make pages dynamic with JavaScript
- React JS library
- Backend programming: PHP/Node JS language - Express JS
-REST APIs
- connection to a MYSQL Database, MongoDB
I am also open for the realization and supervision of your projects and websites (Mini Project / PFE / Personal).
Feel free to contact me for more information.
Before the training, an initial meeting will allow me to better understand your needs.
Vincent
Cambridge IGCSE / GCSE /A-Levels / O-Levels / Checkpoint in Computer Science & Information Technology (ICT)With over seven years of experience in teaching Computer Science & Information Technology (ICT), I have developed a strong expertise in delivering high-quality education across multiple internationally recognized curricula, including Cambridge IGCSE, GCSE, A-Levels, O-Levels, and Checkpoint. My passion lies in equipping students with coding, cybersecurity, and digital literacy skills, ensuring they are well-prepared for the evolving demands of the digital world.
Expertise & Teaching Areas:
✅ Programming & Software Development: Python, Java, C++
✅ Cybersecurity: Ethical hacking, data protection, network security
✅ Digital Literacy: ICT applications, online safety, cloud computing
✅ Data Science & AI: Data analysis, machine learning fundamentals
✅ Web Development: HTML, CSS, JavaScript
Curriculum & Pedagogical Experience:
🔹 Cambridge IGCSE & GCSE ICT & Computer Science – Teaching core and extended syllabi, focusing on programming logic, databases, and networking.
🔹 Cambridge A-Levels & O-Levels Computer Science – Preparing students for advanced computing concepts, problem-solving, and algorithm development.
🔹 Cambridge Checkpoint ICT – Building foundational skills in digital technology and computer applications.
Professional Impact:
📌 Mentored students to achieve top grades in Cambridge ICT & Computer Science exams.
📌 Developed interactive lesson plans integrating real-world applications of technology.
📌 Conducted coding boot camps and cybersecurity workshops to enhance practical learning.
📌 Guided students in project-based learning, including app development and website design.
With a strong commitment to student-centered learning and technological innovation, I am dedicated to shaping future tech leaders and empowering learners with skills relevant to careers in technology, data science, and software development.
Rony
Learn App Development for Teens! Features three fun beginner, intermediate and advanced levels!Empower young minds to create their own mobile apps with this fun and interactive course! Designed for children aged 9 to 13, this course introduces app development using MIT App Inventor, a beginner-friendly platform that makes coding easy and exciting. Students will learn the basics of programming, user interface design, and problem-solving as they build their own functional Android apps. Through hands-on projects and creative challenges, they will develop logical thinking and digital skills while bringing their ideas to life. No prior experience is needed—just curiosity and a passion for technology!
Izhar
Java classes for beginners, intermediate and advanced level by trained professional having practical work experienceWant to make a career in coding or stuck with your school/college syllabus. Here is the solution.
I am an expert with the practical work experience. I'll be starting from scratch and strengthen your concepts so that you can easily master over this language.
I am providing you a brief summary of our course which we generally follow but that doesn't mean that I am bound to just this much content. In case you have any doubt for any other specific topic related to the subject, you could always come up to me or you need any help in your assignments or projects, you are always welcome.
Here is a brief summary of our syllabus content which we'll be covering
Introduction to Java programming
• The Java Virtual Machine
• Variables and data types
• Conditional and looping constructs
• Arrays
Object-oriented programming with Java Classes and Objects
• Fields and Methods
• Constructors
• Overloading methods
• Garbage collection
• Nested classes
Inheritance
• Overriding methods
• Polymorphism
• Making methods and classes final
• Abstract classes and methods
• Interfaces
Exception handling with try-throw-catch-finally constructs
• The Exception class
The Object class
• Cloning objects
• The JDK LinkedList class
• Strings
• String conversions
Working with types: Wrapper classes
• Enumeration interface
Packages
• Package access
• Documentation comments
Applets
• Configuring applets
• Applet capabilities and restrictions
Basics of AWT and Swing
• Layout Managers
• Event Handling
• The Action Listener interface
• Panels
• Classes for various controls, such as label, choice, list,
• Checkbox, etc.
• Dialogs and frames
• Using menus
• Using the adapter classes
• Graphics
Threads
• Synchronization
The I/O Package
• InputStream and OutputStream classes
• Reader and Writer classes
Basic concepts of networking
• Working with URLs
• Concepts of URLs
• Sockets
Database connectivity with JDBC
• Java security
In case you have any query, feel free to contact me.
Give yourself a chance for a better future
All the best
Sylvain
Mathematics - Physics - Computer Science Courses: from Compulsory School to University. ദ്ദി ˉ͈̀꒳ˉ͈́ )✧Hello! I would like to share and transmit my enthusiasm for science (Maths, Physics, Computer Science) and allow you to acquire tools, methods and intuitions that could be useful to you well beyond the academic framework (for example, the ability to construct and write an argument, the ability to reason and take a critical look).
Kenneth
🇸🇬 [Grade 1 to 6] Singapore Math & Science Tutor 🇸🇬🇸🇬Hi there! 👋 I’m a patient and passionate tutor from Singapore 🇸🇬 with several years of experience helping Primary school students (ages 6 to 12) build a strong foundation in Math and Science — the Singaporean way!
I specialise in teaching Primary 1 to Primary 6, using proven methods from the Singapore MOE curriculum:
✅ clear explanations
✅ step-by-step problem-solving
✅ Real-life applications to make learning meaningful
Whether your child needs extra support or wants to get ahead, I personalise every lesson to match their learning pace and style. My lessons are interactive, engaging, and focused on building confidence, not just completing worksheets.
🔹 Taught by a native Singaporean tutor
🔹 Lessons in English (with Chinese support if needed)
🔹 Concept mastery, test prep & homework help
🔹 Online sessions (with in-person options in Bangkok or Singapore)
Let’s help your child feel more confident and capable — one fun and focused lesson at a time!
Younes
Scratch, Roblox: Code for Fun - A Fun Adventure for Kids and Beginners!With Scratch and Roblox, programming becomes child's play! Learn how to create animations, games, and interactive stories using colorful, easy-to-manipulate blocks of code. No complex language here, just a visual and intuitive approach to make learning as fun as possible.
Whether you are a parent wanting to introduce your children to the language of programming or a beginner curious to discover the world of coding, this training is suitable for all ages. No prerequisites necessary, just a dose of curiosity and a desire to have fun while learning.
As a trainer, I am committed to creating a caring and creative learning environment. I will use teaching methods adapted to each child, promoting positive interaction and encouraging the free expression of creativity. The goal is to make each lesson an engaging and enriching experience.
Zakaria
Training For anyone wishing to acquire the basics of PhotoshopFor anyone wishing to learn the basics of Photoshop.
Goals :
Module 1: Will have acquired the fundamentals and basics of Photoshop.
Module 2: Will master the principles of photographic retouching
with Photoshop software.
Module 2: Will design its attractive visuals
(Brochures, flyers, business card ...) as well for printing
only for the web.
Antonin
Experienced teacher in private lessons gives private lessons in the Geneva regionNeed a catch-up, tutoring, private lessons or help with homework in mathematics? In computer science ? In logic?
I'm here for you!
I offer you a personalized approach; because there is no one method that works for everyone, I adapt to the needs and requests of each student (and their parents). The first hour of class will be used to define the student's needs, deadlines and strengths.
My courses are aimed at secondary school students of all levels, higher education students and anyone wishing to refresh or strengthen their knowledge of mathematics and computer science. I have been helping friends and acquaintances on a voluntary basis for a long time in the success of their studies and I hope to be able to put this experience to the benefit of your success :)