FavouritesAdd to Wish List
FavouritesAdd to Wish List
from66.88EUR/ h

Lesson 06: File Inclusion, File Upload and SQL Injection (Lesson 06 of Web Penetration Testing Series)

This lesson is the sixth lesson of the Web Application Penetration Testing series. This lesson is going to cover the following topics:

- File Inclusion
- Types of Inclusion
- Inclusion in Web Development Languages
- File Upload
- Unrestricted File Upload
- Risk Factors
- Protection and Bypassing Methods
- Prevention Methods
- SQL Injection

This lesson will be followed by 02 hours of the practical lab session.

Extra information

A personal laptop/pc is required with Oracle Virtual Box and Kali Linux pre-installed. Good internet connection and device memory is recommended.

Location

Online via webcam
At teacher's location: Almada Street, Hamilton, Scotland, UK
At student's location: Around Glasgow, United Kingdom

|
Use ⊞+wheel to zoom!
+

General info

Skills:
Age:
Teenagers (13-17 years old)
Adults (18-64 years old)
Seniors (65+ years old)
Student level:
Beginner
Intermediate
Duration:
60 minutes
90 minutes
120 minutes
The class is taught in:English

About Me

I am working as a Lecturer (Assistant Professor) in Cyber Security, in one of a renowned university here in Scotland, the UK. I am associated with the Higher Education Academy (HEA) UK as a full Fellow. Additionally, I am associated with Kingston University London as an External Examiner for their undergraduate courses in Cybersecurity, Digital Forensics, Computer Sciences, and Multimedia Technology. I am also associated with the University of London as a Course Mentor/Tutor for their distance learning/online undergraduate courses in Computer Sciences. I am specialized in Digital Authentication and Security, Command and Control Systems (C2/C3/C4i) Security, and Cloud Computing Hybrid Authentication. I am also the Founder and CEO of Security Essential Scientific Research and Training group (SESRT) in Sydney, Australia. I have earned my PhD in Computer Science with specialization in Cyber Security from University Technology Malaysia (UTM). I am an active member of IEEE, an Academic Initiative member for IBM (UK), Authorized Profile Administrator (APA) for IBM Partner-World (UK), member of American Association of Science and Technology (AASCIT) US, and a member of International Association of Science and Technology for Development (IASTED) Canada. I have collaborations with Cyber Security Group in Coventry University (UK), Pervasive Computing Group in University Technology Malaysia, Artificial Intelligence Center for Advanced System (CAS) and Center of Excellence in Information Assurance (CoEIA) in King Saud University, Saudi Arabia. I am currently supervising Postgraduate (PhD/M.Sc.) students and Undergraduate study project students as their primary supervisor here in UWS. I am also serving as an Editor and Reviewer to many ISI/SCI-E highly ranked Journals and Flagship Conferences.

Education

Postgraduate Certificate in Academic Practice from the University of the West of Scotland (UK), PhD (Computer Sciences) from University Technology Malaysia (Malaysia), and an M.Sc. and Bachelors in Computer Sciences.

Experience / Qualifications

With a PhD in Computer Sciences and more than 16 years of teaching and research experience in Computer Sciences, Software Engineering and Cyber Security, I am a Postgraduate Certified in Academic Practice (UK) and a Full Fellow of Higher Education Academy (UK).

Reviews (1)

The lessons I have taken with Dr Zeeshan have been a great approach to the cybersecurity field, he is always available for help and has a deep knowledge of the things he teach.
This lesson is the third lesson of the Web Penetration Testing Series. This lesson covers the following topics: - Web Application Security Overview - Security Principles - Attack Anatomy - Threat Modeling - STRIDE Methodology - DREAD Methodology - Attack Trees This lesson is followed by a 02 hours lab practical session.
This lesson is the fifth lesson of the Web Penetration Testing Series. This lesson consist of the following topics: - Cryptography Overview - Modern Cryptography - Steganography v/s Cryptography - Encoding and Decoding - Symmetric v/s Asymmetric Cryptography - Message Authentication and Hashing This lesson is followed by a two hours practical lab session.
This lesson is the fourth lesson of the Web Penetration Testing series. This lesson consist of the following topics: - Command Injection - Code Injection - Blind Xpath Injection - Brute Force - Risk Factors and Examples - Frequency Analysis This lesson is followed by a two hours lab practical session.
This lesson is the last lesson of the Web Application Penetration Testing Series. The lesson cover the following topics: - Cross-Site Scripting (XSS) - XSS Reflected Attacks - XSS Stored Attacks - Other XSS Vulnerabilities - Protection against XSS Attacks This lesson is followed by two hours of the practical session.
This lesson is the first lesson of the Web Application Penetration Testing series. This lesson is going to provide a complete overview of the series and all the topics covered in this series. Following are the topics which will be covered in this series: - Lesson 02: Web Application Security Architecture - Lesson 03: Web Security Threat Analysis - Lesson 04: Brute Force and Command Injection - Lesson 05: Cryptography and File Inclusion - Lesson 06: SQL Injection My Profile ::: I am working as a Lecturer (Assistant Professor) in Computing and Cybersecurity, with a renowned university in the UK. I am associated as a Full Fellow with the Higher Education Academy (HEA), the UK. Additionally, I am associated with Kingston University London as an External Examiner for their undergraduate courses in Cybersecurity, Digital Forensics, Computer Sciences, and Multimedia Technology. I am also associated with the University of London as a Course Mentor/Tutor for their distance learning/online undergraduate courses in Computer Sciences. I am specialized in Digital Authentication and Security, Command and Control Systems (C2/C3/C4i) Security, and Cloud Computing Hybrid Authentication. I am also the Founder and CEO of Security Essential Scientific Research and Training group (SESRT) in Sydney, Australia. I have earned my PhD in Computer Science with specialization in Cyber Security. I am an active member of IEEE, an Academic Initiative member for IBM (UK), Authorized Profile Administrator (APA) for IBM Partner-World (UK), member of American Association of Science and Technology (AASCIT) US, and a member of International Association of Science and Technology for Development (IASTED) Canada. I have collaborations with Cyber Security Group in Coventry University (UK), Pervasive Computing Group in University Technology Malaysia, Artificial Intelligence Center for Advanced System (CAS) and Center of Excellence in Information Assurance (CoEIA) in King Saud University, Saudi Arabia. I am currently supervising Postgraduate (PhD/M.Sc.) students and Undergraduate study project students as their primary supervisor here in UWS. I am also serving as an Editor and Reviewer to many ISI/SCI-E highly ranked Journals and Flagship Conferences.
This lesson is lesson 02 of the Web Penetration Testing series. It covers the following topics: - Web Application Security Architecture Overview - Web Application Security Architecture Working - Web Application Security Architecture Components - Web Server Architecture - Layered Approach - Service-Oriented Architecture - Cloud Computing - Fog/Edge Computing This lesson is followed by two hours of the practical lab session.

Ask a question

Send a message explaining your needs and Dr Zeeshan will reply soon:
The more detail, the better.
Ex. "Hi, when are you available to meet for a lesson?"

Availability of a typical week

(GMT -04:00) New York
MonTueWedThuFriSatSun
0              
1              
2              
3              
4      Wednesday at 4:00  Thursday at 4:00    Saturday at 4:00  Sunday at 4:00
5      Wednesday at 5:00  Thursday at 5:00    Saturday at 5:00  Sunday at 5:00
6      Wednesday at 6:00  Thursday at 6:00    Saturday at 6:00  Sunday at 6:00
7      Wednesday at 7:00  Thursday at 7:00    Saturday at 7:00  Sunday at 7:00
8      Wednesday at 8:00  Thursday at 8:00    Saturday at 8:00  Sunday at 8:00
9      Wednesday at 9:00      Saturday at 9:00  Sunday at 9:00
10      Wednesday at 10:00      Saturday at 10:00  Sunday at 10:00
11      Wednesday at 11:00  Thursday at 11:00    Saturday at 11:00  Sunday at 11:00
12      Wednesday at 12:00  Thursday at 12:00    Saturday at 12:00  Sunday at 12:00
13        Thursday at 13:00    Saturday at 13:00  Sunday at 13:00
14              
15              
16              
17              
18              
19              
20              
21              
22              
23              
from 66.88€At teacher's location
from 66.88€Online via webcam
from 79.56€At student's home

Good-fit Instructor Guarantee


If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.

Online reputation

  • Instructor since July 2020
  • Phone number verified

Availability of a typical week

(GMT -04:00) New York
MonTueWedThuFriSatSun
0              
1              
2              
3              
4      Wednesday at 4:00  Thursday at 4:00    Saturday at 4:00  Sunday at 4:00
5      Wednesday at 5:00  Thursday at 5:00    Saturday at 5:00  Sunday at 5:00
6      Wednesday at 6:00  Thursday at 6:00    Saturday at 6:00  Sunday at 6:00
7      Wednesday at 7:00  Thursday at 7:00    Saturday at 7:00  Sunday at 7:00
8      Wednesday at 8:00  Thursday at 8:00    Saturday at 8:00  Sunday at 8:00
9      Wednesday at 9:00      Saturday at 9:00  Sunday at 9:00
10      Wednesday at 10:00      Saturday at 10:00  Sunday at 10:00
11      Wednesday at 11:00  Thursday at 11:00    Saturday at 11:00  Sunday at 11:00
12      Wednesday at 12:00  Thursday at 12:00    Saturday at 12:00  Sunday at 12:00
13        Thursday at 13:00    Saturday at 13:00  Sunday at 13:00
14              
15              
16              
17              
18              
19              
20              
21              
22              
23              
from 66.88€At teacher's location
from 66.88€Online via webcam
from 79.56€At student's home

Good-fit Instructor Guarantee


If you are not satisfied after your first lesson, Apprentus will find you another instructor or will refund your first lesson.

Share


Abdelhamid
Private lessons in computer science for undergraduate students in computer science.
Hi there. I offer support courses to help you learn and master the following courses: (1) Algorithms (basic and advanced) (2) Programming (C, C++, Java, Python, Assembler, ProLog, Lisp, Occaml) (3) Object-oriented programming (4) Compilation theory (Automata, regular expressions, grammar, lexical analysis, syntactic analysis, semantic analysis). I can also help you to do your homework in TD and TP and supervise you in your projects (correction of old exam subjects, proposal of exam subjects). The support courses that I offer are of different forms: pdf courses calibrated according to your level, courses recorded in the form of videos, online courses.

Baia
Front-end development(Html, Css, Javascript) by professional and experienced developer
Web Development is one of the most required field nowadays. If you are interesting to make first steps in programming world, or you need to improve your skills in this field, or you have some projects, in what yuo need additional help, HERE I AM! My method of teaching is effective and easy. I have different suitable programs for kids (age 7-13) and for adults. In the end of the course student will be able to build a dynamic web-site independently. Contact for more Details!

Daniele
Private lessons for Computer Science, Java, Python, Javascript, React, Angular, Node
I'm a professional and young software engineer working in Munich, Germany. I have completed many different enterprise projects that came to life and are accessed by thousands of users. In this class, we can cover any general computer science topic related to high school and university exams, as well as real-life enterprise project consultancy. I have been teaching for many years and I have adopted a way of learning with "ELI5": "Explain like I'm five". I'm gonna explain hard concepts in easy and real-world examples. We're not just gonna learn a language or topic, but learn how to learn fast and adapt it in every aspect. I'm a passionate software developer and I will make you love the subject by teaching it in a fun and successful way. Please get in touch with me to let me know what kind of help you need. I'm here for you!

Hammad
Professional Python Tutor with immense Interest in Data Science and Deep Learning
Hey, This is Hammad, I'm a Python Developer and I am working on Python for almost 2 years😇. I will teach you a Full Beginner's Computer Science: Python Course covering from the basics to advanced level programming. My bachelor's in Computer Science is in progress and use python on a regular basis in Data Science, Deep Learning Programming. Teaching Methodology I also give online tuition, my teaching methodology mainly involves explaining concepts with examples by using Jupyter Notebooks. Then I practice one or two questions with the student. Then I give questions to students through sharing Notebooks on screen and ask them to solve on their own. I help them out if they are stuck and then we discuss the answers. This helps in having an interactive class and you will surely not be bored with me and will start liking Python even more😊. General Course Outline: //Python 1 // Print Variables. Logical Operators. Comparison Operators. Comparison Operators If/Else Statements Comments. User Input. List and List’s Functions. List Slicing. Tuples. //Python 2 // For Loops. Nested For Loop. Break, Continue, Pass. Type Casting. Sets. Dictionary. //Python 3// Functions While Loops. Exceptions. File I/O. CSV file. JSON File. Learning Python has never been so easy, enjoyable, and affordable! Don’t lose one more second when you can start learning Python right now! More and More people are doing it. Are you ready to embrace this wonderful experience? Get Access Now! Best Regards, Hammad

Dimitri
Data Analysis Course with Microsoft Excel - Mastery of Excel and Dashboard Design
Microsoft Excel is very powerful data analysis software. It is a practical solution in the short to medium and long term to automate your calculations, to have a global and detailed overview on your activities, and to analyze your data. As an accountant, marketer, commercial agent, secretary, merchant, salesperson or company manager, a good mastery of this software will improve your efficiency, your competitiveness, and will save you a lot of time and money. Whatever your field of activity, this software is designed to help you. During this training you will learn: - best practices, functionalities and tools; - functions and their use; - handling of Dynamic Cross Tables, dynamic graphics, - the design of dashboards, - and you will acquire reflexes that will be useful for your entire career. Duration of training: 1 month Number of hours: 24 hours I am expecting many of you because we have a lot to share.

Marek
Keynote Software Course on Mac or iPad by Graduate Teacher
Learn how to give effective presentations with this great software on Mac or iPad. Amaze your colleagues or acquaintances with high-quality multimedia presentations. Prof nice with great experience and very effective method. Attractive price with course support included. At home or in your company throughout the French-speaking part of Switzerland.

Abdullah
How do you make a Web application? How do you automate business processes? How do you write an API system?
Do you also want to delve into complex API systems? Or do you want to write a central Web application that you can access from any device? Or are you thinking of how can I automate administrative work? I'll help you get started. We make a step-by-step plan together. Are we going to work with a framework such as Laravel, Symfony or are we going to deepen our knowledge of PHP? How do we create a database? How does Oracle or MySQL work? How about Scrum and Git? Which IDE are we going to use? We go through everything. You decide what you want to delve into. I'll help you discover your strengths. We go at your pace and you develop your own style.

Reza
HTML5 for beginners and intermediate web enthusiasts
The basis of web development is HTML. You'll need HTML to start making your website from ground up. I have been an enthusiastic HTML programmer since the early ages of web. During my course you will not only learn how to make responsive web sites, but also you can get your hand on some basics of relevant technologies such as PHP and MySQL.

Mehdi
Computer Science, Algorithmic and Programming Tutoring
I am a computer engineer and I offer courses to students who wish to consolidate their theoretical knowledge and practical skills in computer science. The courses are adaptable according to your needs and the field of computer science that you wish to consolidate the most. However, I suggest you choose one of the following specialty areas that I master: Algorithmics, Programming (C / C ++, Java, C #, Python), Web (HTML, CSS, Javascript, Ajax, XML, etc.), Data structure . I am an engineer in computer science, I offer courses to students who wish to consolidate their theoretical knowledge and practical skills in computer science. The courses are adapted according to your needs. However, I suggest you to choose between the next areas that suits you: Algorithmic, Programming (C / C ++, Java, C #, Python), Web (HTML, CSS, Javascript, Ajax, XML, etc), Data structure.

Ilias
Games, animations and interactive stories with Scratch (children and teenagers)
Are you dreaming of creating your own games, animations or interactive stories? This course aims to enagage learners regardless of their programming experience. The course for beginners starts with a description of the interface and how you can import or create various backgrounds or objects. An introduction to basic command blocks follows, and as the course progresses, learners are given many opportunities to be creative, practise analytical and critical thinking, and combine various command blocks to add functionality to their programs. The course also aims to foster effective communication, as learners have the opportunity to share their creations on Scratch community, receive feedback and exchange ideas with other members. This course is suitable for children and teenagers.

Christopher
Maths and Computer science Tutoring/ Test preparation
Hello! My name is Christopher and I am currently studying Computer science at TU Delft. I am able to tutor in both Maths and Computer Science at any elementary or High school level and have experience teaching a range of syllabus. Qualifications: - A levels: -A* in Maths - A* in Computer Science - A* in Music - Certified Microsoft Innovative Educator Experience: ZVEZA PRIJATELJEV MLADINE LJUBLJANA (ASSOCIATION FOR FRIENDS OF YOUTH) ZPM is an association in Slovenia that aims to help underprivileged children in many different ways including food packets, after-school clubs, and tutoring. I originally started as a volunteer in 2016 and since then I have helped countless students with their school work; most commonly in Maths but also other subjects like Physics, English, and Chemistry. Later my position developed into employment where I would run after school clubs to help the children build confidence and talk about their emotions, make fun programs for summer camps, and of course, I continued with tutoring many children GIRLS DO CODE Girls Do Code is an organization in Slovenia that aims to get more women into STEM, they believe that this interest has to start in childhood and therefore they offer lessons in Computer Science to over 300 girls. This cause was something that I thought was incredibly important and so I became a volunteer for their organization. This entailed teaching a group of 10 girls the basics of Computer Science in a fun and creative way and was a very rewarding experience. Through my training for Girls Do Code, I was certified by Microsoft as an Innovative Educator. I currently work as a Maths teaching assistant at an international school in the Netherlands where I work with children struggling with maths in small groups. Please don't hesitate to reach out if you have any questions!

Aditya
Computational Chemistry and Chemical Visualization Related Tutorials
I specialized in Computational Chemistry for University and High School Levels. In the future, this field is promising for teachers who want to learn about visualization and chemical drawing software, such as Marvinsketch, Chemsketch, Avogadro, and so forth. The following are computational topics you may get from my lecture: 1. Basic on Linux Command 2. Basic scripting in python, R, and Fortran 3. Fundamental aspects of Computational Chemistry 4. Tutorial on computational chemistry software, e.g., DFTB+, NAMD, GROMACS, GAMESS, ORCA, Gaussian, and NWCHEM. 5. All simulations will be performed on your computer. Thus, I will guide you to install all of them.

Sok
Introduction to the basics of Computer Science - Algorithms - Python
You will learn the fundamentals of computing, from understanding how a computer speaks to how to speak to it. The basics of algorithms will go hand in hand and we will get used to using Python as a programming language like pseudocode. Create your first simple computer programs and get started with computers.

Said
Maths and info lessons provided by an associate professor
With a more advanced psycho-pedagogical and didactic spirit, the associate professor and doctor Said of Casablanca, +16 years of professionalism and expertise in the field of teaching, of several scientific works, pedagogue and didactician, offers you sessions of excellence in Maths-Info for BAC-CPGE-Mission and Sup. • Academic and university support sessions which respect the expected educational objectives and guide the learner towards excellence. • Understand and assimilate your courses by adopting methodological approaches that are simple, fruitful and of a high educational level. • Learning based on more advanced psycho-pedagogical and educational approaches. • Techniques, tips and methodologies of scientific and academic writing. • Acquire the skills required for judicious work and self-confidence. • Correspondence courses, distance courses and home courses. • Reinforcement, supervision, homework help and individual support.

Robert
Excel lessons, at your place, at my place or remotely, at your convenience
Management teacher gives, with a lot of passion!, Excel courses, remotely or not. Many examples and exercises to provide you. Travel without problem throughout Brussels and surroundings. Keywords : Scenario analysis, Year, Rounding, Today, Bdnb, Bdnbval, Bdsum, Search, Column, Copy/paste in values, Copy/paste with transposition, Consolidation, Date, Datedif, Determat, Dollar, Right, Righterg, Equiv, Esterror, Estna, Frequency, Filter (simple and advanced), Format of cells, Left, Large.Value, Printing of documents, Index, Indirect, Inversemat, Day, Weekday, Line, Matrix, Max, Maxa, Max.Si, Min , Mina, Mina.If, Formatting of cells and ranges, Month, Average, Average.If, Nb, Nb.If, Nbval, Naming of cells and ranges, No, Small.value, Product, Productmat, Protection of cells, Lookup (Lookup), Lookupv (VLookup), Lookuph (HLookup), If (If), If.Not.Disp, If.Conditions, Iferror, Sum, Sumproduct, Sum.If, Sum.If.Set, Substitute , Pivot tables, Sorting, Cell locking