April 3, 2022April 3, 2019Muhammad Asim Shahzad2852188
April 3, 2022
April 3, 2019
Muhammad Asim Shahzad
2852188
Muhammad Asim Shahzad
Tranchulas Certified Web Application Security Professional (CWASP) is accredited by the Institute of Information Security Professionals (IISP), UK and certified under the GCHQ Certified Training scheme. CWASP examination tests technical skills on a live web application where participants are expected to discover and exploit security vulnerabilities in the target web applications. This certificate holder has passed Tranchulas lab exam to receive CWASP certification.
Skills / Knowledge
- Develop scope and rules of engagement for penetration testing projects
- Discover and understand the implications of security vulnerabilities in web applications
- Manually discover web application vulnerabilities
- Discover and exploit SQL Injection
- Test inputs for injection attacks
- Analyse traffic using Burp Suite
- Identify security issues in client-side application code
- Manually discover and exploit Cross-Site Request Forgery (CSRF) attacks
- XSS Attacks
- Advance XSS Attacks using Browser Exploitation Framework
- Identify improper input validation issues including but not limited to CSV injection, XML Injection and OS Command Injection
- OpenSSL Attacks
- Cookie Manipulation Attacks
- Discover Insecure Direct Object Reference (IDOR) Vulnerabilities
- Exploiting Mass Assignment Issues
- Exploiting SSRF vulnerability
Issued on
April 3, 2019
Expired on
April 3, 2022