Get certified as a Burp Suite Practitioner (BSCP) and take your web application penetration testing skills to the next level.
The aim of this course is to help people to prepare for the challenging Burp Suite Certified Practitioner exam.
Important notes: This course is NOT teaching the actual usage of Burp Suite and its features. This course is proving a step-by-step walkthrough through labs with detailed explanations on how to find and exploit web app vulnerabilities. The 31 core labs are also covered in my other course (Burp Suite Practitioner Labs Walkthrough) and are therefore duplicated here. This course aims at people who want to fast track the BSCP exam and don't want to go through all practitioner labs! The Tips section, golden rules incl. the cheat sheets, mystery labs, practice exams etc. are all brand new.
Your instructor is Martin Voelk. He is a Cyber Security veteran with 25 years of experience. Martin holds some of the highest certification incl. CISSP, OSCP, OSWP, Portswigger BSCP, CCIE, PCI ISA and PCIP. He works as a consultant for a big tech company and engages in Bug Bounty programs where he found thousands of critical and high vulnerabilities.
Martin is solving them all and giving useful insight on how to find and exploit these vulnerabilities. He is not just inserting the payload but explains each step on finding the vulnerability and why it can be exploited in a certain way. The videos are easy to follow along and replicate. Martin is also dropping a lot of tips and tricks for those who wish to get the Burp Suite Certified Practitioner certification (BSCP). This training is highly recommended for anyone who wants to become a professional in Web Application Penetration Testing, Web Application Bug Bounty Hunting or take the Burp Suite Certified Practitioner certification (BSCP).
Portswigger labs are a public and a free service from Portswigger for anyone to use to sharpen their skills. All you need is to sign up for a free account. I will update this course with new labs as they are published. I will to respond to questions in a reasonable time frame. Learning Web Application Pen Testing / Bug Bounty Hunting is a lengthy process, so please don't feel frustrated if you don't find a bug right away. Try to use Google, read Hacker One reports and research each feature in-depth. This course is for educational purposes only. This information is not to be used for malicious exploitation and must only be used on targets you have permission to attack.