Advanced Web Hacking

Course Overview

Advanced Web Hacking is designed to take your web penetration testing skills to the next level. This course dives deep into advanced topics, exploring edge-case vulnerabilities, sophisticated attacks, and complex scenarios faced in modern web applications. Each module will offer in-depth exploration through code review, debugging, and hands-on labs.

The first module focuses on Prototype Pollution. New modules will be released every 4-6 weeks.

Key Topics

Advanced web attacks

Prerequisites & System Requirements

It's recommended that students have the following experience or equivalent:

PWPT certification
3+ years of web application penetration experience

Students should also have:

The ability to run a Linux virtual machine (VM)
Standard penetration testing tools like Burp Suite, a code editor such as Visual Studio Code

Advanced Web Hacking Course Objectives

Identify and exploit web application vulnerabilities
Ability to use techniques such as code review and debugging to find and exploit vulnerabilities
Gain a deep understanding of how web applications work

Who Should Take Advanced Web Hacking?

Advanced web hacking is aimed at those who want to understand, find and exploit advanced vulnerabilities within web applications for penetration testing and bug bounty.

Experienced web application penetration testers looking to expand their knowledge and skillset
PWPT certification holders
Developers that want to understand advanced web attacks from a code perspective

Advanced Web Hacking Course Curriculum

Module 1: Prototype Pollution is available now! Additional content will be dropping soon.

Welcome to the Course

Available in days

days after you enroll

Prototype Pollution

Available in days

days after you enroll

About the Instructor: Alex Olsen

Alex is a Web Application Security specialist with experience working across multiple sectors, from single-developer applications all the way up to enterprise web apps with tens of millions of users. He enjoys building applications almost as much as breaking them and has spent many years supporting the shift-left movement by teaching developers, infrastructure engineers, architects, and anyone who would listen about cybersecurity.

Alex holds a Master’s Degree in Computing, as well as the PNPT, CEH, and OSCP certifications.

This course is included in our All-Access Membership starting at $29.99/month

Get full access to the Advanced Web Hacking course and our full course catalog when you enroll in our All-Access Membership.

Courses Included with the All-Access Membership

Advanced Web Hacking is designed to take your web penetration testing skills to the next level. This course dives deep into advanced topics, exploring edge-case vulnerabilities, sophisticated attacks, and complex scenarios faced in modern web applications. Each module will offer in-depth exploration through code review, debugging, and hands-on labs.

Alex Olsen

Practical Web Hacking

Expand your knowledge and skills in web application hacking with this intermediate course.

Alex Olsen

Practical Bug Bounty

A hands-on course to prepare you for your first Bug Bounty adventure.

Heath Adams

Practical API Hacking

A hands-on course for hacking APIs.

Alex Olsen

Practical Ethical Hacking - The Complete Course

Learn how to hack like a pro. 25 hours of up to date practical hacking techniques with no filler.

Heath Adams

Mobile Application Penetration Testing

Learn Mobile Application Hacking for iOS and Android Devices

Aaron Wilson

Windows Privilege Escalation for Beginners

Learn how to escalate privileges on Windows machines with absolutely no filler.

Heath Adams

Linux Privilege Escalation for Beginners

Learn how to escalate privileges on Linux machines with absolutely no filler.

Heath Adams

Open-Source Intelligence (OSINT) Fundamentals

Learn the ins and outs of Open Source Intelligence and step up your investigative game.

Heath Adams

External Pentest Playbook

Learn to conduct an external network penetration test from start to finish

Heath Adams

Linux 101

Everything you need to know to start using Linux

Brent Eskridge

Practical Malware Analysis & Triage

Arm yourself with knowledge and bring the fight to the bad guys.

Matt Kiely

Programming 100: Fundamentals

Learn the building blocks of programming with Python.

Heath Adams

Python 101 For Hackers

Learn Python with a focus on concepts and modules important for hacking

Riley Kidd

Python 201 For Hackers

Move beyond the basics and learn how to actively use Python as a Windows hacking tool

Riley Kidd

Practical Windows Forensics

Learn how to conduct a digital forensic investigation on a Windows system from start to finish

Markus Schober

The Definitive GRC Analyst Master Class

Everything you need to know to dive into the cybersecurity GRC pool

Gerald Auger, PhD

Beginner's Guide to IoT and Hardware Hacking

Learn to perform security research and testing on IoT devices and hardware.

Andrew Bellini

Rust 101

Learn the foundational concepts of the Rust programming language.

Heath Adams

Detection Engineering for Beginners

Start thinking and working as a Detection Engineer.

Anthony Isherwood

Programming with AI - Mini Course

Utilize Artificial Intelligence and Large Language Models to become a better programmer.

Heath Adams

Practical Phishing Campaigns

This immersive course delves into practical phishing tactics, equipping cybersecurity professionals with the knowledge to perform professional phishing engagements.

Aaron Wilson

C# 101 for Hackers

Learn the fundamentals of C# and .NET to enhance your hacking skills.

Alex Tushinsky

Security Operations (SOC) 101

Learn the fundamentals required to become a SOC Analyst.

Andrew Prince

Soft Skills for the Job Market

Equip yourself with essential soft skills, communication techniques, and job application strategies required to excel in today’s competitive job market.

Heath Adams

Practical Help Desk

Prepare for a career in IT or cybersecurity by learning everything you need to know to work the help desk.

Andrew Bellini

Academy Live Workshops

Exclusive Workshops for Academy Students Go beyond the course materials with bi-monthly livestreamed workshops taught by your favorite Academy instructors. These interactive sessions will be hosted on the Academy platform and will not be available on our public social media channels. If you attend live, you can ask questions and hack alongside our instructors. Workshop recordings will also be available so you can go back later and hack at your own pace. Topics for the workshops will rotate, please check the curriculum below for the upcoming schedule.

Alex Olsen

Frequently Asked Questions

Can I get a refund if I'm unhappy with my purchase?

Yes. All courses come with a 24-hour money-back guarantee.

Will I receive a certificate of completion when I finish a course?

Yes. All courses come with a certificate of completion.

Do the courses count as Continuing Education Units (CEUs)?

Yes. Every certificate of completion comes with the total CEUs earned listed on the certificate.

What is the All-Access Pass?

As of July 1st, 2023 TCM Academy transitioned to a monthly subscription model, where you now receive full access to all of the courses on our platform for as long as your subscription remains active.

What if you already own courses on TCM Academy?

If you already own a course on our platform, you will continue to own that course forever. Previously owned courses will not be affected by this change.

I can see the course, but it won’t load or play. What should I do?

We use Cloudflare to protect our course platform and unfortunately, it does not play nice with VPNs. If you are experiencing issues, turn off your VPN and try again. If that does not solve the issue, please contact our support team at [email protected] and we will help you out.