As mentioned previously, I’m doing an online training course – Web Application Penetration Testing – from ELearnSecurity.

Module 11 – Web Services

Module 11 covers Web Services, including an introduction to Web Services, their possible vulnerabilities and attacks that hackers may carry out.

It covers the following:

  • Introduction to Web Services
  • Standardized Protocols
  • Exposing Services
  • Description of a Web Service
  • WSDL
  • WSDL Disclosure
  • SOAP Action Spoofing
  • SQL Injection through SOAP messages