WEB APPLICATION PENETRATION TEST & SECURITY

Provided by

About the course

Who Should Attend?

Web App Developers, Web Site Admins, Auditors, Cyber Security Experts.

Prerequisites

Basic knowledge of web technologies.

Course Syllabus

• Information gathering
• Configuration management flaws
• Input / output manipulation
- Cross Site Scripting (XSS)
- Injection flaws: SQL Injection, OS command injection etc.
• User authentication flaws
• Authorization flaws
• Session management flaws
- Session fixation
- Session hijacking
- Cross Site Request Forgery (CSRF)
• Application logic
• Log management
• Failure management
• Secure application management

Benefits

The attendees will learn important security components of HTTP based applications,most common mistakes, how to avoid making these mistakes and how to assure sustainable application security.

Related article

As we become more reliant on digital technologies, the cyber security industry has grown in order to protect organisations against online attacks. ...