Intended Audience
Security Officers, Application Testers and Architects

Course Length
1-2 Days

Course Description
This training course is focused on teaching students how to both identify and exploit application vulnerabilities using the same techniques as professional application penetration testers and real-life attackers

Sample Outline
The following is a sample outline that includes the core topics and example sub-modules taught during the class:

• Assessment Methodologies and Tools
• Critical Application Security Concepts
• Performing Application Security Assessments
  • Application Code Inventory
  • Authentication, Authorization & Session Management
  • Encryption, Confidentiality & Data Protection
  • Error/Exception Handling and Logging
  • Data Access
  • XML Web Services
  • Input Validation & Output Encoding
  • Architecture, Platform, and Language Specific Testing Considerations
  • Application & Server Configuration Checks
• Advanced Assessment Pointers and Tips

If you would like to learn more information about this course, please contact us for more details.