All Courses
Ultimate HTTP Warrior Ultimate DNS Warrior Ultimate Apache Web Server Warrior
Blog
About Contact

Become the Ultimate HTTP Warrior

 

Buy this course

 This course includes:

 
  • 17 hours on-demand video
  • Front End and Backend Code for the Website
  • Downloadable commands and configurations
  • Full lifetime access
  • Certificate of Completion
 

Who is this course for:

This course has been designed for Network Engineers who are coming from a routing and switching background and looking forward to moving towards supporting Load Balancers, Firewalls and Proxies. 

It can also be leveraged by seasoned application support engineers, system administrators, platform engineers, web site hosting administrators, web developers and other infrastructure professionals as it covers the working of the protocol in depth.

 

Requirements:

  • Basic CCNA level networking knowledge
  • Basic TCP and Linux knowledge
  • Access to a Linux server - cloud / eve-ng / gns3
  • Access to intermediate network devices such as Layer 7 proxies

 

Course Outcomes:

  • Thorough understanding of the HTTP protocol and how it works with static and dynamic websites.
  • Understand how application traffic is transported across the network and how it interacts with various devices such as routers, switches and load balancers.
  • Good understanding of how basic websites and web applications work.
  • Confidently troubleshoot HTTP based network traffic 
  • Identify if the issue is with the network or the Application
  • Clear interviews with top tier organizations like Amazon, Google, Facebook etc. 

 

What sets this course apart from others:

  • High quality production standards
  • Respect for time - every second of the course is used to deliver precise and practical information 
  • Goes deep into the protocol following the RFC
  • Comprehensive coverage of all HTTP related concepts
  • All topics are explained with real static/dynamic websites 
  • Explains not just the protocol but all surrounding concepts - how static and dynamic web sites work - what is front end and backend web development - how application traffic is transported across the network over TCP

What you will learn:

  • In depth working of the protocol as per the HTTP RFCs
  • Components of HTTP based systems
  • Evolution of HTTP
  • How to setup a Web Server using Apache
  • Hosting an Internet facing static web site on your Apache server
  • How a complete web site gets loaded on your browser
  • How to use Developer Tools and Wireshark to observe and analyse HTTP Traffic
  • Deep Dive into the Waterfall section of Developer Tools
  • The relation between TCP and HTTP - different connection management strategies like short lived connections vs persistent connections vs pipelining vs parallel connections vs domain sharding vs multiplexing
  • Format of HTTP Messages
  • HTTP Headers and their significance / use case
  • How to use Curl and Postman to make HTTP requests and how to diagnose the output
  • URL and URL Encoding
  • The role of MIME in HTTP
  • Deep Dive into HTTP Keep Alive
  • How do reverse proxies leverage HTTP Keep Alive feature
  • Deep Dive into HTTP Methods  - to RFC or not (pun intended)
  • How HTML Forms work with the POST method
  • How to store form data into a Database
  • All other HTTP Methods explained with a practical web application 
  • HTTP Response Codes
  • The significance HOST Header in Virtual Hosting
  • HOST Header vs SNI
  • Query String Parameters and how do they compare to the POST method
  • Content Negotiation - Server driven vs Agent driven
  • How caching works and caching related headers
  • Caching strategies for different types of content
  • Significance of VARY header in Content Negotiation
  • How do HTTP Redirects work - 301, 302, 307, 308, 300, 304
  • Range Requests
  • Transfer Encoding and the concept of per hop headers
  • Deep Dive into Cookies and Sessions - Explained with a practical web application
  • Demonstration of Cookie related attacks - Cross Site Scripting (XSS) and Cross Site Request Forgery (CSRF) and how to mitigate them
  • Difference between a Web Server and Application Server
  • How Static and Dynamic websites and web applications work
  • How Web Servers can run application programs and produce dynamic content
  • Different Web Application Architectures
  • How does HTTP work in the context of a Web Application
  • HTTP Security: CORS / HSTS / CSP / SSL (HTTPS) / HKPK and CT / X-Headers / Authentication / Referrer and Referrer Policy Headers

  • Client hints and Fetch metadata request headers

  • Deep Dive into HTTP2
  • Basics of Front End Web Development – HTML, CSS and JS
  • What are APIs
  • How intermediate devices like Forward and Reverse Proxies interact with HTTP traffic
  • Troubleshoot HTTP Issues effectively

Course Curriculum

Module 1: The Basics
HTTP 101 - Part 1 (06:43)
HTTP 101 - Part 2 (06:39)
Evolution of HTTP (14:24)
Module 2: Setting up a web server with static web site
Installing Apache Web Server on Ubuntu (16:48)
Hosting Static Web Site using Apache Web Server (06:41)
Module 3: HTTP Requests and underlying TCP Connections
A Typical HTTP Session and Connection Management (16:20)
Making & Observing HTTP Requests using Chrome Developer Tools (31:43)
Module 4: HTTP Request and Response Format
HTTP Request and Response Messages (34:29)
Introducing Curl and Postman and Raw Requests over telnet (34:55)
URLs and URL Encoding (07:31)
MIME (12:20)
Module 5: HTTP Keep Alive
Lab Tour (06:02)
HTTP Persistent Connection (HTTP Keep Alives) (20:38)
Module 6: HTTP Methods and Response Codes
GET, HEAD and POST (26:11)
POST (Deep-Dive), PUT, DELETE, OPTIONS and TRACE (25:35)
HTTP Methods - Real World Example (52:10)
Connect Method (14:43)
Storing Form Data in Database (06:52)
HTTP Response Codes (45:11)
Module 7: HTTP Special Features
HOST Header (07:06)
Query String Parameters (05:58)
Content Negotiation (13:49)
Compression (04:54)
Caching (42:32)
Redirects (12:48)
Site Upgrade: Login System and Place Orders (08:27)
Range Requests (11:37)
Transfer Encoding (14:10)
HTTP Cookies and Sessions (57:18)
Module 8: HTTP Security
Cross Origin Resource Sharing (CORS) (20:10)
Authentication (28:04)
Content Security Policy (CSP) (15:21)
HTTPS (46:34)
Loading Mixed Content (06:29)
HTTP Strict Transport Security (HSTS) (10:29)
X-Headers (11:59)
Referer and Referrer-Policy Headers (08:28)
Client Hints and Fetch Metadata Request Headers (15:54)
HPKP and Certificate Transparency (10:13)
Module 9: HTTP/2 and Troubleshooting
HTTP/2 (40:35)
Troubleshooting HTTP Issues (20:36)
Module 10: Bonus Content
Crash Course on HTML, CSS and JavaScript (Front End Web Development) (47:14)
How Dynamic Sites and Web Applications Work (55:55)
Demystifying APIs (32:50)
How Forward and Reverse Proxies Work (42:14)
How to install and setup Eve-ng (45:10)

Detailed Course Syllabus

Your instructor

Shreevar is an experienced Network Engineer with 18 years of experience working with leading tech giants like AWS Premium Network Support.

Having worked in solutions and support in Layer 1 through Layer 7 technologies Shreevar now specializes in end to end network troubleshooting across a wide spectrum of technologies including AWS, LAN, WAN, VPNs, Routing&Switching, Load Balancing, Firewalls, Proxies, Web and DNS Servers, complex web application architectures and network automation.

He is now focussed on designing deeply technical comprehensive one stop training programs for his students enabling them to reach expert level within the shortest possible time and without having to waste time looking for content.