🆘Practical Web Defense🆘
- Close the gap between Web application attack and defence
- Mitigation advise for multiple platforms and languages
- The most comprehensive and practical coverage of the OWASP Testing Guide
- Comprehensively aligned to OWASP methodologies, tools and tests
- Covers and goes beyond OWASP TOP 10
- Detailed techniques and methodology to simplify the defence of web applications
- No boring theory: practice-oriented curriculum
- Over 20 different lab scenarios to practice with
- Advanced usage of OWASP ZAP, OWASP OWTF, ModSecurity...
- Coverage of OWASP Cheat Sheets, OWASP OpenSAMM, OWASP ModSecurity Core Rule Set
- After obtaining the eWDP certification qualifies you for 40 CPE
Course Material
Syllabus
- Module 1 : Tool Introduction
- Module 2 : Information Gathering
- Module 3 : Configuration Management
- Module 4 : Authentication
- Module 5 : Authorization
- Module 6 : Session Management
- Module 7 : Business Logic Flaws
- Module 8 : Data Validation
- Module 9 : Cryptography
- Module 10 : Denial Of Service
- Module 11 : WebServices
- Module 12 : Client-Side and Phishing
- Module 13 : Error Handling and Logging
- Module 14 : Applied Secure Coding Principles
- Module 15 : Virtual Patching and Intrusion Detection
Pre-requisites
- Basic knowledge of programming fundamentals: loops, variables, functions, include files etc
- Reading and understanding PHP code will help although not mandatory.
- Basic knowledge of tools such as curl, Wireshark, OWASP ZAP (or Burp).
- Knowledge of security concepts will be an advantage but is not required
This training course is for
- Web developers
- Web app security researchers
- Penetration testers
- IT admins and staff
 |
Click Here To Download |
 |
Get Instant updates |
Post a Comment