Description

This Web application security course will change the way you look at code. A hands-on training during which we will teach you all of the attackers’ tricks and how to mitigate them, leaving you with no other feeling than the desire to know more.

It is your choice to be ahead of the pack, and be seen as a game changer in the fight against cybercrime.

Outline

• IT security and secure coding
• Web application security (OWASP Top Ten)
• Client-side security
• Practical cryptography
• Security protocols
• Security of Web services
• Common coding errors and vulnerabilities
• Denial of service
• Principles of security and secure coding
• Knowledge sources

Participants attending this course will

• Understand basic concepts of security, IT security and secure coding
• Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
• Learn about XML security
• Learn client-side vulnerabilities and secure coding practices
• Have a practical understanding of cryptography
• Understand essential security protocols
• Understand some recent attacks against cryptosystems
• Understand security concepts of Web services
• Learn about JSON security
• Learn about typical coding mistakes and how to avoid them
• Get information about some recent vulnerabilities in the Java framework
• Learn about denial of service attacks and protections
• Get sources and further readings on secure coding practices

Detailed table of contents

Day 1

IT security and secure coding

OWASP Top Ten 2021

Day 2

Practical cryptography

Modern browser security features

Client-side security

Day 3

Security of Web services

Common coding errors and vulnerabilities

Denial of service

Principles of security and secure coding

Knowledge sources

Audience

 Developers

Prerequisites

 General Web application development