Overview What You Will Learn Curriculum Instructor

Course Overview

With the demise of Flash and the rise of HTML5 a new era has been ushered in that features better-looking and better-functioning websites that are compatible with mobiles and PCs alike. Transferring data and receiving it has also become much more straightforward than before. 

HTML5 serves as the backbone of modern web applications and is used in 90% of websites and web applications, with all major browser vendors including Apple, Google, Firefox, Opera, Amazon, and Microsoft, supporting HTML5. With HTML5 serving as the structure of a web application, understanding HTML5 security is crucial to providing a first line of defense in web applications. While HTML5 is designed to be inherently more secure than HTML, it provides little protection for attacks such as XSS, CSRF, Tabnabbing, HTML smuggling, and SQL injection. 

HTML5 presents its unique challenges, and its associated applications can feature several vulnerabilities such as PostMessage vulnerabilities, Local Storage vulnerabilities, and Middleware vulnerabilities, which could invite XSS exploitation, as well as CORS security issues, WebSockets Vulnerabilities, Geolocation vulnerabilities, WebDatabase vulnerabilities, and other flaws. It’s crucial for developers and application security professionals to learn to write a secure HTML5 code and implement measures such as access control, secure storage mechanisms, sandboxing, API protection, authorization, and access filtering to develop a secure and hardened web application. 

The course will cover an overview of HTML5 Fundamentals, followed by a look at some of the common vulnerabilities found in HTML5. As you move along, you’ll learn about some of the potential HTML5 attack vectors, as well as the built-in security features that already exist in HTML5. The course will include some of the defensive programming techniques that can be implemented to secure HTML5 code as well as how to deal with security issues in HTML5 Forms. 

By the end of the course, you’ll have a thorough understanding of all the security threats targeting HTML5 and you’ll be able to implement measures needed secure HTML5 from malicious attacks.

What You Will Learn

  • Why HTML5 is leading the way in browser programming.
  • The biggest security trends and threats that are prevalent in today's world.
  • How to write HTML5 code in the context of security.
  • The importance of implementing HTML5 security protocols in the real-world.

Program Curriculum

  • Overview of HTML5
  • Inherent Security Issues
  • Content
  • $7 Million Cybersecurity Scholarship by EC-Council
  • Chapter 1 Quiz

  • Introduction to the Threat Landscape
  • Principal Threats
  • Man in the Middle Attack
  • DNS Cache Poisoning
  • Cross Site Scripting
  • Denial of Service
  • Cross-site Request Forgery
  • Chapter 2 Quiz

  • Section Introduction
  • PostMessage Vulnerability
  • Local Storage Vulnerability
  • Middleware Vulnerability
  • WebSockets
  • Same Origin vs Cross Origin Resource Sharing
  • HTTP Headers
  • Chapter 3 Quiz

  • Section Introduction
  • HTML Sanitisation
  • HTTP Only Flag
  • Content Security Policy
  • Prevention Techniques
  • Chapter 4 Quiz

  • Section Introduction
  • Security Issues in HTML5 Forms
  • Validation with New Inputs
  • Additional Corrective Measures
  • Chapter 5 Quiz

  • Section Introduction
  • Cross-Site Tracing
  • SameSite Flag
  • Penetration Testing
  • Chapter 6 Quiz

  • Overview of Major Concepts from the Course
  • Recap Principal Threats
  • Recap Principal Vulnerabilities
  • Recap Prevention Techniques
  • Recap HTML5 Forms
  • Recap Additional Considerations
  • Bonus Topics and Conclusions
Load more modules

Instructor

Pratish Sharma

Pratish Sharma specialises in IT (Information Technology) infrastructure and the security of information systems, he qualified in teaching IT early on in his career and he worked with city councils running technical courses for local communities around the UK (United Kingdom), helping many people re-join the workforce in a challenging landscape of mass career change in the era of the IT boom. Pratish now delivers targeted training programs for finance and business professionals, as well as analysts and technical teams on topics including; forecasting; planning, automation programming, HTML5, statistical modelling for decision making, artificial intelligence and cyber security. Pratish is involved in mobile technology via the Android Forum, as well as with the emerging scene of the autonomous car. In a fast-evolving cyber landscape, Pratish engages in ethical hacking and advises organisations on safe practices with their digital footprint.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

$ 499.00
Billed annually or $59.00 billed monthly
Get Started Now
Start your 7-day trial for $1

What is included

  • 700+ Premium Short Courses
  • 50+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

$ 599.00
Billed annually or $69.00 billed monthly
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 800+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month
  • 3 Official EC-Council Essentials Certifications¹ (retails at $897!)
    Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

  • Hands-on FortiGate Firewall

    Hands-on FortiGate Firewall

    Short Course

    Hands-on FortiGate Firewall

    Security Architecture and Operations

    Learn how to deploy the FortiGate NGFW and how to configure t...

    $99.99

    Intermediate

    3 hr 0 m

  • Hands-on SELinux

    Hands-on SELinux

    Short Course

    Hands-on SELinux

    Security Architecture and Operations

    Learn SELinux Basics: Implement Security Policies, Troublesho...

    $49.99

    Beginner

    5 hr 28 m

  • Complete Bash Shell Scripting

    Complete Bash Shell Scripting

    Short Course

    Complete Bash Shell Scripting

    Security Architecture and Operations

    Automate repetitive tasks with Bash Shell Scripting to save v...

    $79.99

    Intermediate

    18 hr 10 m

  • Installing and Mitigating Linux Rootkits

    Installing and Mitigating Linux Rootkits

    Short Course

    Installing and Mitigating Linux Rootkits

    Security Architecture and Operations

    Understanding the threat posed by rootkits in Linux and poten...

    $59.99

    Advanced

    3 hr 0 m

  • Start Hacking and Making Money Today at HackerOne

    Start Hacking and Making Money Today at HackerOne

    Short Course

    Start Hacking and Making Money Today at HackerOne

    Security Architecture and Operations

    Hack Legally and Get Paid for Your Findings

    $59.99

    Beginner

    1 hr 9 m

  • PowerShell Scripting Essentials: Anatomy of Logging – Developing a Logging Module

    PowerShell Scripting Essentials: Anatomy of Logging – Developing a Logging Module

    Short Course

    PowerShell Scripting Essentials: Anatomy of Logging – Developi...

    Security Architecture and Operations

    How to write a PowerShell module that contains functions to d...

    $69.99

    Intermediate

    6 hr 1 m

  • Machine Learning for Application in Digital Forensics

    Machine Learning for Application in Digital Forensics

    Short Course

    Machine Learning for Application in Digital Forensics

    Security Architecture and Operations

    Unlocking the Potential of Machine Learning: From Theory to P...

    $99.99

    Intermediate

    4 hr 0 m

  • Applied Python Cryptography

    Applied Python Cryptography

    Short Course

    Applied Python Cryptography

    Security Architecture and Operations

    Securing your Python code and protecting your users private i...

    $79.99

    Intermediate

    4 hr 0 m

1 8