Nova Web Security Labs For Web Pen-testing Learners By Yell Phone Naing

Installation For Linux

apt update
apt install docker*
cd ~ && wget https://raw.githubusercontent.com/yellphonenaing/WebHackingLiveClass/main/LabInstallation/novawebseclab.sh
sudo bash ~/novawebseclab.sh start

Vulnerabilities :-

1. Command Injection
2. Cross Site Request Forgery
3. Server Side Request Forgery
4. Arbitrary File Upload
5. File Inclusion
6. Remote Code Execution
7. Host Header Injection
8. Playing with htaccess
9. Insecure Deserialization
10. Broken Authentication and Authorization
11. Sensitive Data Exposure
12. Security Headers Misconfiguration
13. Race Conditions
14. Unvalidated Redirects and Forwards
15. Variables variable
16. Cross Site Scripting
17. Cross Site Scripting Inclusion
18. SQL Injection
19. Server Side Template Injection
20. CPanel Hacking / Cracking / Phishing (Doc)

Online Access :: https://lab.novacomputertraining.org/

All vulnerabilities are designed for beginner levels.

Nova Computer Training offers a wide range of courses tailored to different skill levels and professional needs. Our course categories include:

1. Linux and System Administration​

• Linux Fundamentals
  • Basics of Linux operating system
  • Command line proficiency
• Advanced Linux Administration
  • Server management
  • Shell scripting and automation

2. Cyber Security (Red Team)​

• Introduction to Red Team Operations
  • Fundamentals of offensive security
  • Reconnaissance and exploitation techniques
• Advanced Red Teaming
  • Advanced penetration testing
  • Red team tools and methodologies
• Web Application Security
  • OWASP Top 10 vulnerabilities
  • Secure coding practices

3. Docker and Containerization​

• Docker Essentials
  • Introduction to Docker
  • Containerization concepts
• Advanced Docker
  • Docker Compose and Docker Swarm
  • Best practices for container deployment
• Kubernetes Basics
  • Introduction to Kubernetes
  • Managing containerized applications

4. Advanced Web Application Penetration Testing​

• Introduction
  • Introduction to Penetration Testing
  • Web Application Security Overview
• Web Application Architecture
  • Introduction to Web Application && Server Architectures
  • PHP Programming language
  • SQL Basic CRUD
  • Apache && Nginx && PHP-Fpm
• Web Application Penetration Testing
  • Penetration testing tools
  • Common Vulnerabilities and exploits
  • Real World Penetration Testing, CTF Practices and Tips
• Security Coding Practices

Why Choose Us?​

• Experienced Instructors: Our trainers are industry professionals with extensive experience and a passion for teaching.
• Hands-on Learning: We emphasize practical training with real-world projects and interactive sessions.
• Flexible Scheduling: We offer both full-time and part-time courses to accommodate different schedules.

Contact Us​

For more information about our courses and enrollment process, please visit our website or contact us at:

• Website: www.novacomputertraining.com
• Email: [email protected]
• Phone: 09-266182585
• Facebook: https://www.facebook.com/NovaComputerTraining

Join Nova Computer Training today and take the first step towards a successful career in technology!