Learn how hackers attack your environment & to develop secure web applications.
A vulnerable application could result in major reputational and financial losses, and it is often the entry point that hackers use to compromise entire organizations. As a developer, it is critical to understand how web apps are attacked, and how we can defend our environment.
This hands-on training is developed and presented by Alexander Andersson and Fabio Viggiani, leading web application security experts. They will bring their experience from the field to prepare you with the right mindset to attack web applications; knowing the opponent’s strategies wins half the battle.
The training targets developers and it will cover everything from the initial recon phase to identification and exploitation of vulnerabilities. There will be secure coding, hacking, patching, exercises, demos and challenges.
The examples and exercises are based on different languages – primarily .NET, Java and Node.js – but the principles apply to all languages and platform.
Web technologies, basic front-end technologies, basic networking and working experience in at least one back-end language.
Developers with focus on web applications
- Understand how hackers attack web applications and reach critical systems.
- Learn fundamental principles of the most common security vulnerabilities (OWASP TOP 10 and more)
- Learn different ways to prevent attacks.
- Implement the most appropriate solutions to protect web applications.
Day 1 will focus on introducing the mindset, strategies and tools used by attackers to compromise web applications and expand within organizations. A complete real-world hacking demo is conducted to address several different aspects that usually lead to the full compromise of an entire organization. Different types of injections are also addressed during the first day. This includes exercises, challenges and secure coding to prevent injections.
Day 2 focuses on aspects such as Cross Site Scripting, Cross Site Request Forgery, access control and other common issues, with many tasks and small challenges. Day 2 is a lot of fun!
Day 3 addresses authentication and session issues, as well as several security misconfigurations often encountered during our penetration tests. Demos and examples will be used to bring everything that the students have learned to a higher level, introducing a wider perspective, essential to understand how different parts of a large environment interact and depend on each other, security-wise.
Hur påverkar COVID-19 denna utbildning?
Informator är utbildningsföretaget som stärker din konkurrenskraft genom att underhålla, uppdatera och tillföra relevant kunskap inom IT och management där och när du behöver det. Vi har vuxit tillsammans med svensk mjukvaruindustris ledande företag och utbildat utvecklare, tekniker, projektledare och chefer sedan...
Flera orter (2)
36 950 SEK
Flera orter (2)
36 950 SEK