Our "Web Application Hacker's Handbook" Series is still the most deep and comprehensive general purpose guide to hacking web applications that is currently available. In late 2011, MDSec set up the online training labs: over 200 hacking labs hosted in the cloud. In this course, we bring you the solutions, demos, and much more material and technologies for you to try.



As well as covering the 1st and 2nd Edition, our course has evolved to cover new attacks and techniques, including blind XXE attacks, new XSS vectors, new and damaging logic flaws, and attacks against frameworks.





New to this class, you will be able to find vulnerabilities in our labs using the new Burp Collaborator, as well as other custom Burp extensions.

We have run courses for over 9 years at Black Hat, and we know what you want. This structured course is balanced at 130 slides with numerous opportunities to watch instructor-led demos, whilst hacking our library of over 150 lab exercises, spanning .Net, J2EE, PHP and finishing with a "Capture the Flag" contest.In our labs, no question is left unanswered (or unasked)!