Python: Web Development with Penetration Testing

More Information
  • Explore the Node.js module system
  • Build your custom middleware for Express
  • Integrate with Express
  • Create a secure local store for passwords
  • Use message queues to break down your application into manageable pieces
  • Use Redis and to make dynamic sites
  • Create many applications using the various packages of Node.js

This course makes use of Django, which is one of the world's leading web development frameworks.

We start off by learning about class-based views, so that you can start building pages that respond to specific requests and URL structures.

Have you ever wanted to build a complete REST API? Our next step is to do just that. Starting out with basic read-only functionality, we'll also add key-based authentication so that we can properly implement a CRUD feature set.

The latter part of the course will start with an overview of the web application penetration testing methodology.

We don't just cover the background to penetration testing. You'll also learn how to write and develop your own custom tooling and reference scripts to save you time, just like the professionals.

Style and Approach

This carefully structured course combines text, video and assessment content. It focuses on Python, starting out with core coverage of the Django framework. The latter sections then detail how you can take your web application and run it through a suite of comprehensive tests that prepare it for real-world security threats and exploits.

You'll understand how to build web applications properly, in a manner that lets you test and improve them responsibly to a professional standard.

This course combines some of the best that Packt has to offer in one complete, curated package. It includes content from the following Packt products:

Note: This interactive EPUB adheres to the latest specification, and requires video and interactive content support in your reader. We recommend using Readium with the latest stable version of Google Chrome for Windows/Linux, and iBooks for OSX.

  • Integrate Socket.IO with Express and use the same authentication
  • Leverage the power of Redis to create a shared state across many different servers
  • Explore MVC design pattern in Node.js and build use it to build a Twitter-like application
  • Build a frontend process with Node.js and npm
Course Length 4 hours
ISBN 9781787288485
Date Of Publication 27 Jan 2017


Cameron Buchanan

Cameron Buchanan is a penetration tester by trade and a writer in his spare time. He has performed penetration tests around the world for a variety of clients across many industries. Previously, Cameron was a member of the RAF. In his spare time, he enjoys doing stupid things, such as trying to make things fly, getting electrocuted, and dunking himself in freezing cold water. He is married and lives in London.

Chris "Mac" McEniry

Chris "Mac" McEniry is an MIT graduate, and a practicing sysadmin and architect responsible for running a large E-commerce and gaming service. He's been working and developing in an operational capacity for 15+ years. In his free time, he builds tools and thinks about efficiency.

Christian Martorella

Christian Martorella has been working in the field of information security for the last 18 years and is currently leading the product security team for Skyscanner. Earlier, he was the principal program manager in the Skype product security team at Microsoft. His current focus is security engineering and automation. He has contributed to open source security testing tools such as Wfuzz, theHarvester, and Metagoofil, all included in Kali, the penetration testing Linux distribution.

Kevin Veroneau

Kevin Veroneau is a very active Python and Django developer who has worked for many start-ups, has an active Python blog, and has worked on a magnitude of Python projects over the years.

Matthew Nuzum

Matthew Nuzum has been developing web applications since 1999 and has worked for several start-ups including Canonical, the makers of Ubuntu, as well as Fortune 500 companies. He has a passion for helping others learn new technologies and has written numerous tutorials and help documents as well as running a web-focused user group based in his hometown of Des Moines.