Uncle Rat's XXE Handbook

XXE Made Simple!

3.90 (146 reviews)
Udemy
platform
English
language
Network & Security
category
instructor
Uncle Rat's XXE Handbook
17,835
students
1 hour
content
Nov 2021
last update
FREE
regular price

What you will learn

What an XXE is

How to exploit XXE's

XXE Filter evasion techniques

Tools to test for XXE

How to prevent XXE

Description

Who am i?

An experienced instructor with over 10 000 happy students on udemy, i spend my time making complex topic reacheable for anyone wanting to learn and understand them. As a dad of a toddler, i know what it means to have to simplify things but even before all this i was already emerged in the world of training IT profiles in software test automation and performance testing, having gotten my neoload expert certification in Paris so i could teach that software in a 3 day course that would prepare staff for neoload certification. All this helped me when i gained some experience in bug bounties on Intigriti (You can find me as theamazingferret) in a short time, i decided to start up my youtube channel because people kept asking me the same questions and this was a way to help them better. People seemed to like my teaching and it blew to where we are today. You can find me on LinkedIn as Wesley Thijs or on youtube or twitter or even facebook as the XSS Rat.

What does this course offer?

During my time as a bug bounty hunter and pentester i found i liked the XXE vulnerability type quite a lot. In this course i explain to you where XXE stems from, what it entails, how to exploit it and even how to prevent it. Every video file has a full PDF covering the topics in detail. To finish off i will you show you how to exploit this vulnerability in a set of practical video's demonstrated on one of my old CTF machines and on the portswigger labs.

Not only will you learn how to find and exploit this vulnerability but i will complete your skillset by giving you general guidance on preventing this issue type.

Content

Introduction

Introduction

What is XXE

What is XXE?

XXE Entry points

XXE Entry points

Exploiting XXE

Exploiting XXE

WAF and filter evasion

WAF and filter evasion

Tools to find and how to prevent XXE

Tools to find and how to prevent XXE

Throwing it all together

Throwing it all together

Practical examples

XXE On the portswigger labs
XXE Is so much more than just XML
XXE Through DOCX
Blind XXE and parameter Entities
Chaining XXE into SSRF

Reviews

Singham
November 14, 2022
Such a great and useful course, and such a awasome explanation Wesley !!! I have a request to you please make this type of video on SSTI Bug, because I need it.... THANKS !!!!!!!
Daroat
September 11, 2022
amazing and good content , iam just a begginer and just now about XXE in the course ,this will be a greate matiral for me thank for the good work
Habibul
August 2, 2021
He is one of my favorite instructor not just for his kind behavior and help also he has good heart. I would I like to recommend all of his course if you really want to get a wonderful professional instructor. God bless you uncle rat sir.
Pedro
June 9, 2021
I liked it, but the presentation was lacking preparation/slides and the Pratical examples, where mere youtube videos, that despite being interesting, are out of the main presentation context.

Coupons

DateDiscountStatus
6/8/2021100% OFF
expired

Charts

Price

Uncle Rat's XXE Handbook - Price chart

Rating

Uncle Rat's XXE Handbook - Ratings chart

Enrollment distribution

Uncle Rat's XXE Handbook - Distribution chart

Related Topics

3994582
udemy ID
4/20/2021
course created date
4/23/2021
course indexed date
Bot
course submited by