![]() As much as I enjoy a good CTF, challenge, or puzzle to work through, I really just want to cut through all the BS and become a better professional in my career. More often than not, I get pretty annoyed and frustrated with the overwhelming amount of unrealistic labs, boxes, machines, vm’s, etc. I didn’t have to wait around for a few minutes for everything to be configured, it works right away. This allowed me to work through the content pretty quickly. On top of the great tracking, labs will instantly deploy for you when you click “Access the lab”. So for example, if you click on the page to bring you to all of the labs offered in the Web Academy, it will look something like this: Instant Deployment What’s also great is once you complete a lab, it will show as completed on any page which references it. The Web Academy does that for me so I don’t have to worry about it. Because of that, I have no doubt in my mind that I’d likely forget to mark a lab as completed. ![]() ![]() If you’re like me, you may be forgetful at times. When you complete a lab successfully, the lab environment you started will automatically notify you that you’ve completed the lab, and the Web Academy will automatically add this completion to your progress for you. One of the greatest things I mentioned above is the ability to track your progress. Since I’m a pretty simple person, I found these labs to be overwhelmingly positive. Much like other platforms and services that offer vulnerable labs, there are hits and misses. The training material goes into great depth about vulnerabilities and why they exist, how to take advantage of them, as well as how to protect against them. In the above image, this is currently my progress after completing all of the XSS labs and training material. Additionally, you can track your progress to see where you stand in the learning materials, and the vulnerability labs.Īs you can see above, I’ve still got some work to do. The labs are split up into three levels of difficulty: Apprentice, Practitioner, and Expert. The Web Academy offers free training on many important categories of web vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), XXE Injection, Insecure Deserialization, and more. If you’re not familiar with Burp Suite, its a very powerful tool that I am currently utilizing a ton, and finding new features almost every time I use it. The Web Academy was created by the very company that created Burp Suite. So before I hop in with my opinions, I feel it may be necessary to provide a quick high-level overview of what the Portswigger Web Academy is. Since I’ve had a couple people ask me about Portswigger Web Academy since I’ve started doing it, I figured a blog post would be in order… What is Portswigger Web Academy? Recently, I’ve just finished the 30 labs required to complete the Cross-Site Scripting (XSS) section, and have really been enjoying it. As of lately, I’ve been trying to level-up my Web App knowledge by going through some Portswigger Web Academy labs and articles.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |