LearnSkill Certified WordPress Penetration Tester (L| WPT)
This WordPress Penetration Testing and Security training learns how to hack your site before someone else does. You’ll uncover its weaknesses before sealing them off, securing your content and your day-to-day local-to-remote editorial process. This is more than some ” Tips & Tricks …”. It’s ultimate protection – because that’s what you need.
WordPress is mostly used by CMS today! – some hacker tried to crack your site, its data and content – maybe once but, with automated tools, very likely dozens or hundreds of times. learn most of them in this training.
- Prerequisite: Ethical Hacking Foundation course/(L-CEH)
- Training Duration: 40 Hrs. / 2 Months / 5 Days (Bootcamp for working candidates only)
- Level: Intermediate to advance.
- Know the risks, think like a hacker, use their toolkit, find problems first – and kick attacks into touch
- Lock down your entire network from the local PC and web connection to the server and WordPress itself
- Find out how to back up and secure your content and, when it’s scraped, know what to do to enforce your copyright
- Understand disaster recovery and use the best-of-breed tools, code, modules, techniques, and plugins to insure against attacks
WordPress Penetration Testing & Security Training Syllabus
01- Understanding risks to the WordPress site first |
02 – Introducing the Hacker’s methodology |
03 – The Reconnaissance phase |
04 – VAPT |
05 – Hacker’s Arsenal for wordpress |
06 – Securing the Local Box |
07 – Securing data and backup solutions |
08 – Programming in a safe Environment |
09 – Surf Safe |
10 – Social Engineering Attack |
11 – Login Lock-Down |
12 – Must-Do WordPress Tasks |
13 – SQL Injection Attacks |
14 – Cross Site Scripting(CSS) |
15 – DOS Protection |
16 – Session Hijacking |
17 – Identity Theft Fraud / Social Media Frauds |
18 – Must-Do WordPress Tasks |
19 – Finding Suspicious Activity |
20 – Physical Security |
21 – Galvanizing WordPress |
22 – Containing Content |
23 – System Forensics |
24 – Password Management |
25 – Serving Up Security |
26 – Solidifying Unmanaged |
27 –Integrity, logs, and alerts with OSSEC |
28 – Defense in Depth |
29 – ModSecuirty |
30 – Finding Suspicious Activity |
31 – Actions to be taken if hacked |
32 – Project : Live Auditing WordPress site (Documentation & Reporting) |
33 – Labs |
34 – Summary |