Hands-On Web Application Penetration Testing Training Course

Hands-On Web Application Penetration Testing Training Course

This training course is a series of educational interactive training sessions where the attendees will gain hands-on experience. They will be able to identify security flaws in web applications customised or built for the training course. They will also be able to exploit those security flaws to understand the value of fixing those flaws fully.


Tranchulas Hands-On Web Application Penetration Testing Training Course is Assured Training in association with the National Cyber Security Centre (NCSC), UK. The course material has been rigorously assessed against the exacting standards of NCSC. The quality of the trainers’ delivery and the course administration has been quality checked and approved by APMG.


  • Basic knowledge of HTML and JavaScript
  • Participants must bring their laptops

CWASP Certification


This course leads to Tranchulas Certified Web Application Security Professional (CWASP) certification. Tranchulas CWASP is accredited by Institute of Information Security Professionals (IISP), UK. Certified Web Application Security Professional (CWASP) is an exclusive certification which will test your technical skills on a live but simulated web application where you are expected to discover and exploit security vulnerabilities. Students are required to pass our online lab test to receive CWASP certification.

Training Online Labs


Tranchulas Online Labs are available 24×7 for practising web attacks learnt during the training course. Online labs have several web applications based on real-world scenarios which can be exploited and have different difficulty levels. Vulnerabilities include but are not limited to XSS, SQL Injection, CSRF, cookie manipulation, local file inclusion. Students are required to discover and exploit vulnerabilities to pass online labs and receive Tranchulas Certified Web Application Security Professional (CWASP) Certification.

Post Training Support


You can connect with Tranchulas Online labs for 90 days to practice your hacking kung-fu after the training course. During this time, our technical team will provide you email, phone and skype support to ensure the skills acquired on the training course are being applied correctly.

About the Trainer


Tranchulas training and workshops are conducted by the world’s top information security experts. Our instructors are featured speakers at renowned security conferences such as Hack in the Box Malaysia, InfoSek Slovenia, Hack.lu Luxembourg, CONFidence Krakow, Troopers, Shakacon, OWASP Europe and BruCON Belgium.

Additional Information


What You Will Receive

  • Access to Tranchulas Online Labs via VPN for 90 days to practice your hacking kung-fu learnt during the course
  • Training Manual
  • Rules of engagement and scope sheets for professional penetration tests
  • Certificate of Attendance
  • Tranchulas Hacker T-Shirt

Laptop Requirements

Minimum Laptop Requirements

  • CPU: 1.5 GHz or higher
  • Minimum 4 GB RAM
  • 25 GB of free space on your Hard Drive
  • Wireless 802.11 b/g
  • Should have the capability to have local administrator access within the Operating system and disable antivirus if required.

Who Should Attend

  • Information security professionals
  • Penetration testers
  • Ethical hackers
  • Web Application Developers
  • Website designers
  • Anyone who wants to better understand hacking tools and techniques

Training Schedule

Date Venue Location  
Radisson Blu Portman Hotel London, UK Book Now