The course is completely practical and there will be very less theory. You are going to learn most advanced vulnerabilities in webhacking. Note: I am making this course as released so if you dont see all the topics covered. I AM MAKING IT :) My goal: After this course you should be able to start playing CTfs and after test real websites that are listed on Bug bounty platform or have their own Bug reward program. You can also get certificates that will help you to get a good job or get a hike in salary in your current position. The course will cover Following topics Basic Linux Burp suite File Upload Code execution File Inclusion SQL Injection Server-side Request forgery (SSRF) XML External Entity (XXE) Broken Access Control JSON Web Token(JWT) Hacking Insecure Deserialization Rate Limit API Hacking Insecure Direct Object reference OAUTH 2.0 
TO MAC USERS: If RAR password doesn't work, use this archive program:
RAR Expander 0.8.5 Beta 4 and extract password protected files without error.
TO WIN USERS: If RAR password doesn't work, use this archive program:
Latest Winrar and extract password protected files without error.
