Services / Trainings / Security Testing Training Workshop
Web applications grow in complexity every day and it is extremely difficult to manage them from a security perspective. No system is bulletproof, but there are measures that, if implemented, can save companies millions from online frauds. This course helps students to understand the problems associated with web applications and the techniques used to address them.
The training takes the form of a workshop with hands-on security test of a deliberately insecure application. We will start the day building a threat model that highlights the areas we need to protect, enumerating threats that we care about. From here we will start to plan and execute security tests to explore these threats. As we look at different risks, we will cover the appropriate practical techniques and theory, and then apply these to the application. As we find vulnerabilities we will examine each vulnerability from a technical angle and its associated risk along with the best remediation approach.
The course will introduce you to the industry standards and best practices, at the same time teaching you how to focus on the methodology. Students will also have a major understanding of:
This security training course is addressed to all companies that have a software development department, in particular to testing and software development professionals who want to include security in the software development life cycle.
Based on the OWASP Top 10 and OWASP Testing Project, with practical examples, participants will learn how these threads are exploited and how to protect against cybercriminals. Our course is split into 10 lectures and ends up with a quiz where participants can evaluate their newly acquired skills.
Course requires a laptop with the following minimum hardware requirements:
Participants must have a background in software testing and a basic understanding of the Linux command line.
