Certified Ethical Hacker (CEH) v8: Hacking Web Applications

This course is included in our On-demand training solution.


Web applications provide the interface between end users and web servers. In this course, we look at web application attacks, the associated tools and techniques used, and mitigation strategies. An ethical hacker is a person who attacks an organization’s security on behalf of its owners in order to discover vulnerabilities. Instead of taking advantage of these vulnerabilities, the ethical hacker reports them to the organization who can then put in place the appropriate countermeasures to protect themselves against malicious hackers This course is the eleventh in a series of courses which can used in preparation for the Certified Ethical Hacker v8, 312-50, exam. The course has been developed in partnership with EC-Council and is based on their Ethical Hacking and Countermeasures V8 course materials and labs.

Target Audience

Network and information security professionals



Expected Duration

90 min.

Course Objectives

Web Application Overview

  • identify common attack vectors for web applications
  • Web Application XSS and Injection Attacks

  • identify command injection attacks
  • Web Application CSRF and DoS Attacks

  • match the layer to the web service attack type that can be performed at that layer
  • Web Application Hacking Methodology

  • match the hacking activity to the stage in the web application hacking methodology
  • Web Application Hacking Tools and Countermeasures

  • match the web application hacking countermeasure to the type of attack it helps defend against
  • Web Application Penetration Testing

  • determine what you test for at which stage of web application penetration
  • Hacking Web Applications





    Multi-license discounts available for Annual and Monthly subscriptions.