培训团队：看雪学院（815K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6i4m8W2k6r3W2&6i4K6u0W2j5$3!0E0i4@1g2r3i4@1u0o6i4K6R3&6i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1#2i4K6R3^5i4K6W2n7i4@1f1#2i4@1u0n7i4@1u0m8x3U0l9H3x3q4!0q4y4g2!0n7z5g2!0n7y4q4!0q4c8W2!0n7b7#2)9^5b7#2!0q4y4g2)9^5c8g2)9^5y4W2!0q4y4#2!0n7b7W2)9^5c8U0p5H3i4@1f1#2i4@1p5@1i4K6W2m8i4@1f1#2i4@1t1&6i4@1t1@1i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1#2i4K6S2r3i4K6V1I4i4@1f1#2i4@1t1I4i4K6V1#2i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1#2i4K6S2r3i4K6V1%4i4@1f1#2i4K6R3^5i4@1t1H3i4@1f1@1i4@1t1^5i4K6W2m8i4@1f1#2i4K6R3$3i4K6R3#2i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1#2i4@1t1&6i4@1u0r3i4@1f1$3i4@1t1K6i4K6W2n7i4@1f1^5i4@1q4q4i4@1p5@1i4@1f1#2i4K6V1H3i4K6S2o6i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1#2i4K6W2o6i4@1p5^5i4@1f1^5i4@1p5I4i4K6S2o6i4@1f1@1i4@1t1^5i4K6W2m8i4@1f1@1i4@1t1^5i4@1q4p5i4@1f1$3i4@1p5H3i4K6V1I4i4@1f1%4i4@1q4n7i4K6S2n7i4@1f1@1i4@1u0m8i4K6R3$3i4@1f1@1i4@1u0n7i4@1p5@1i4@1f1@1i4@1u0m8i4@1u0m8i4@1f1#2i4@1t1H3i4K6S2m8i4@1f1$3i4K6V1#2i4@1q4o6i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1@1i4@1t1^5i4K6V1K6i4@1f1@1i4@1t1^5i4K6W2m8i4@1f1#2i4@1u0p5i4@1p5J5i4@1f1^5i4@1t1I4i4@1p5I4i4@1f1K6i4K6R3H3i4K6R3J5i4@1f1%4i4@1u0p5i4K6V1I4i4@1f1%4i4@1q4n7i4K6V1&6i4@1f1#2i4@1p5%4i4K6S2n7i4@1f1%4i4@1u0n7i4K6R3^5i4@1f1#2i4K6R3#2i4@1t1K6i4@1f1$3i4@1t1K6i4@1p5^5i4@1f1#2i4@1q4q4i4K6R3&6i4@1f1#2i4K6R3#2i4@1p5^5i4@1f1$3i4K6S2m8i4K6R3H3i4@1f1$3i4K6W2o6i4@1q4r3i4@1f1&6i4@1p5J5i4K6R3$3i4@1f1#2i4K6W2r3i4K6W2r3i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1$3i4K6W2o6i4K6R3H3i4@1f1$3i4K6V1$3i4@1t1H3i4@1f1#2i4K6S2r3i4K6V1I4i4@1f1#2i4@1t1I4i4K6V1#2i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1#2i4K6W2r3i4@1t1&6i4@1f1#2i4K6R3#2i4@1u0n7i4@1f1@1i4@1u0m8i4K6R3$3i4@1f1#2i4@1p5@1i4@1p5%4i4@1f1$3i4K6R3&6i4@1t1&6i4@1f1#2i4@1q4q4i4K6R3&6i4@1f1#2i4K6R3#2i4@1p5^5i4@1f1@1i4@1u0m8i4@1u0m8i4@1f1$3i4K6R3&6i4K6S2p5i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1@1i4@1u0p5i4@1u0r3i4@1f1@1i4@1u0n7i4K6V1$3i4@1f1@1i4@1u0n7i4@1q4o6i4@1f1@1i4@1u0n7i4K6S2q4i4@1f1$3i4K6V1&6i4@1q4q4i4@1f1&6i4K6R3H3i4K6W2m8d9g2c8Q4c8e0N6Q4z5o6S2Q4b7U0q4Q4c8e0g2Q4b7e0g2Q4b7V1c8Q4c8e0S2Q4z5o6m8Q4z5o6g2Q4c8e0k6Q4z5o6S2Q4z5e0m8Q4c8e0W2Q4z5e0g2Q4b7V1k6Q4c8e0c8Q4b7U0S2Q4b7V1q4Q4c8e0g2Q4z5o6g2Q4b7U0N6Q4c8e0k6Q4z5f1y4Q4z5o6W2Q4c8e0c8Q4b7U0S2Q4z5o6m8Q4c8e0k6Q4z5p5q4Q4z5o6m8Q4c8e0c8Q4b7U0W2Q4z5p5u0Q4c8e0W2Q4z5e0g2Q4b7V1k6Q4c8e0N6Q4z5f1q4Q4z5o6c8Q4c8e0g2Q4b7f1g2Q4z5o6W2Q4c8e0g2Q4z5o6g2Q4b7e0S2Q4c8e0c8Q4b7U0S2Q4z5e0y4Q4c8e0k6Q4z5o6W2Q4z5p5c8Q4c8e0y4Q4z5o6m8Q4z5o6t1`.

培训时间

3-5天的培训课程。

详细大纲

1、SQL注入漏洞

2、命令执行

3、代码注入

4、文件上传漏洞

5、文件包含

6、跨站脚本攻击（XSS）

7、跨站请求伪造（CSRF）

8、暴力破解

9、不安全的会话管理

10、安全配置错误

11、敏感信息泄漏

12、使用含有已知漏洞的组件

13、不安全的URL跳转

14、越权

15、业务逻辑漏洞

内容概述：

以上15种漏洞主题参照OWASP top10，以及各大漏洞提交平台及SRC最常出现的漏洞进行归纳总结。

每个主题按照漏洞原理、漏洞代码分析、测试方法及工具、漏洞防范措施，四大详细内容分类来进行深入讲解。

让开发人员深入理解和学习每种漏洞的原理、测试、预防措施，在开发阶段就杜绝产品的安全问题。

联系信息：

联系人：万嗣超

QQ：882704

电话：13611684418

邮箱：service@pediy.com

公司地址：上海自由贸易试验区张衡路 666 弄 1 号楼 601 室