Professor Messer

A business email compromise is a challenging social engineering attack to protect against. In this video, you’ll learn how a BEC attack can be carried out and how to prevent a compromise from occurring. << Previous: Cross-site Scripting Next Video: Supply Chain Attacks >>

A cross-site scripting attack takes advantage of the trust associated with our browser. In this video, you’ll learn how a cross-site scripting attack can be carried out and you’ll see a live demonstration of an XSS attack against a vulnerable application. << Previous: SQL Injection Attacks Next Video: Business Email Compromise >>

A SQL injection can provide an attacker with access to everything in your database. In this video, you’ll learn how a SQL injection is constructed and you’ll see a live demonstration of a SQL injection on a vulnerable application. << Previous: Insider Threats Next Video: Cross-site Scripting >>

Internal employees and contractors can be a significant threat to an organization’s security. In this video, you’ll learn how attackers take advantage of insider threats and ways to protect against this attack type. << Previous: Password Attacks Next Video: SQL Injection Attacks >>

Our passwords are often the only protection our applications have from an attacker. In this video, you’ll learn about password hashing, brute force attacks, and dictionary attacks. << Previous: Zero-day Attacks Next Video: Insider Threats >>

A zero-day attack takes advantage of a previously-unknown vulnerability. In this video, you’ll learn about zero-day attacks and how organizations can react to a zero-day vulnerability. << Previous: On-Path Attacks Next Video: Password Attacks >>

Attackers have many different techniques to gain unauthorized access to information. In this video, you’ll learn about on-path attacks, ARP poisoning, and wireless evil twins. << Previous: Denial of Service Next Video: Zero-Day Attacks >>

A denial of service can cause significant outages and downtime. In this video, you’ll learn about denial of service attacks and distributed denial of service attacks. << Previous: Social Engineering Next Video: On-Path Attacks >>

Social Engineering can take many different forms. In this video, you’ll learn about phishing, shoulder surfing, tailgating, impersonation, and more. << Previous: Anti-malware Tools Next Video: Denial of Service >>

Security professionals have many tools available to combat malware. In this video, you’ll learn about the Windows Recovery Environment (WinRE), Endpoint Detection and Response (EDR), email gateways, software firewalls, and more. << Previous: Malware Next Video: Social Engineering >>