ENO Institute is privileged to have been part of many ground-breaking technology projects worldwide for 25+ years. We’ve learned a lot, and we’re pleased to share what we’ve learned with you via our knowledge programs.

OUR CONTACTS


Saint Charles Ct Stafford, Virginia 22556

(+1) 540 720 9660 (+1) 888 742 3214

Seminars

Let\'s Work Together

This event has passed

Defending Web Applications Security Training Workshop

Start
September 16, 2024
End
September 20, 2024
Time
9:00 AM - 5:00 PM
Timezone
UTC+0
Address
VIRTUAL CLASS   View map
Phone
540-720-9660

$4,495.00

Defending Web Applications Security Training Workshop

Guaranteed to Run Guaranteed to Run

Status

Schedule

09:00 - 09:15 WELCOMING AND INTRODUCTION

12:00 - 01:00 BREAK

05:00 - 05:00 CLOSED OF SESSION

Event Details

Defending Web Applications Security Training Workshop

Defending Web Applications Security Training Workshop: The quantity and importance of data entrusted to web applications are growing, and defenders need to learn how to secure them. Traditional network defenses, such as firewalls, fail to secure web applications. Defending Web Applications Security Training Workshop covers the OWASP Top 10 Risks and will help you better understand web application vulnerabilities, thus enabling you to properly defend your organization’s web assets.

Mitigation strategies from an infrastructure, architecture, and coding perspective will be discussed alongside real-world applications that have been proven to work. The testing aspect of vulnerabilities will also be covered so that you can ensure your application is tested for the vulnerabilities discussed in class. To maximize the benefit for a wider range of audiences, the discussions in this Defending Web Applications Security Training course will be programming language agnostic. The focus will be maintained on security strategies rather than coding-level implementation.

What’s Included?

  • Five days of Defending Web Applications Security Training Workshop with an expert instructor
  • Defending Web Applications Security Electronic Course Guide
  • Certificate of Completion
  • 100% Satisfaction Guarantee
RESOURCES
RELATED COURSES
Audience/Target Group:

The target audience for this Defending Web Applications Security Workshop course:

  • Application developers
  • Application security analysts or managers
  • Application architects
  • Penetration testers who are interested in learning about defensive strategies
  • Security professionals who are interested in learning about web application security
  • Auditors who need to understand defensive mechanisms in web applications
  • Employees of PCI-compliant organizations who need to be trained to comply with PCI requirements
Class Prerequisites:

The knowledge and skills that a learner must have before attending this training course are:

  • This class requires a basic understanding of web application technology and concepts such as HTML and JavaScript.
Course Objectives:

Upon completing this Defending Web Applications Security Workshop course, learners will be able to meet these objectives:

  • How to comprehensively remediate common web application vulnerabilities.
  • How to apply defensive application design and coding practices to avoid security vulnerabilities.
  • The HTTP protocol and new technologies such as SPDY and WebSockets affect the protocol stack.
  • How to move away from basic web application security principles of “validating more” and implement effective security controls against vulnerabilities that input validation simply does not fix.
  • How to customize, implement, and maintain a baseline security standard for the web applications development lifecycle, improving security and reducing exposure to common vulnerabilities such as the OWASP Top 10 Risks.
  • How to leverage HTTP header-level protection to apply strong defense systems on the client side by building another layer of defense on top of secure coding on the server side.
  • How to design better and stronger security architecture that includes infrastructure aspects in the design process.
  • How to understand cutting-edge web technologies (such as HTML5) and their security implications, avoiding security issues when utilizing these newer technologies.

Defending Web Applications Security Training Workshop

Course Syllabus:
Web Basics and Authentication Security
  • HTTP basics
  • Overview of web technologies
  • Web application architecture
  • Recent attack trends
  • Authentication vulnerabilities and defense
  • Authorization vulnerabilities and defense
Proactive Defense and Operation Security
  • Cross-site scripting vulnerability and defenses
  • Web environment configuration security
  • Intrusion detection in web application
  • Incident handling
  • Honeytoken
AJAX and Web Services Security
  • Web services overview
  • Security in the parsing of XML
  • XML security
  • AJAX technologies overview
  • AJAX attack trends and common attacks
  • AJAX defense
Cutting-Edge Web Security
  • Clickjacking
  • DNS rebinding
  • Flash security
  • Java applet security
  • Single-sign-on solution and security
  • IPv6 impact on web security
Capture and Defend the Flag Exercise
  • Mitigation of server configuration errors
  • Discovering and mitigating coding problems
  • Testing business logic issues and fixing problems
  • Web services testing and security problem mitigation
  • Reinforcement through exercises of key topics discussed throughout the course.
Defending Web Applications Security Training WorkshopDefending Web Applications Security Training Workshop Recap, Q/A, and Evaluations

Reviews

There are no reviews yet.

Be the first to review “Defending Web Applications Security Training Workshop”

Your email address will not be published. Required fields are marked *