Pages

Application Security Testing &Web Hacking workshop,2015

Posted by CISO Platform on March 16, 2015 at 10:20am

8669941481?profile=original

Application Security Testing &Web Hacking

oswlj6.jpg?width=150

Workshop Duration: 2 days
Date: 4 & 5th June,2015

Price: INR 25,000

Description:

If you are looking at an Application Security training, then this is for you. Get your hands dirty with a deep dive into Appsec and web Hacking Techniques.

Major areas covered:

  • Basics & Owasp
  • Hands on with Attacks. This will include practical lab sessions on a demo application.
  • Hands on Demo and advanced attacks-deep dive

All the "deep dive sessions are hands on where participants will have to use the hacking knowledge and the concepts told during the class to hack into a test application.

Workshop Agenda:

  • Basics & OWASP:
    • Quick round of introduction
    • Introduction to Computer Networks  
    • OSI and TCP/IP models
    • Why, When and How of Application Security (Secure SDLC)
    • Threat Modelling and Risk Assessment
    • Familiarization with OWASP and top 10 attacks
  • Hands on with Attacks. This will include practical lab sessions on a demo application
    • Injection attacks--deep dive*
    • XSS attacks--deep dive*
    • Session attacks--deep dive*
    • Authentication and authorization attacks--deep dive*
    • CSRF and Insecure direct object reference--deep dive*
  • Hands on Demo and advanced attacks
    • Security misconfiguration --deep dive*
    • Advanced attacks – Parameter Pollution, Cookie Corruption, HTTP Response Splitting etc.
    • URL redirect and forwards--deep dive*
    • Logical vulnerabilities with Business risks--deep dive*
    • Report Writing and creating business risk
    • Bug bounty,Using application security knowledge to report bugs, research and earn

Trainer: Abhijeth Dugginapeddi

8669941679?profile=original

  • Top 10 researchers in Synack a Crowdsourcing Security Intelligence platform
  • Hall of fames like Google, Yahoo, Facebook, Microsoft, At&t, Dropbox, etc
  • Conducted more than 60 workshops and trained more than 10,000 people
  • Discovered vulnerabilities on Google, Yahoo, Facebook, Microsoft, Amazon, Adobe, Twitter, at&t, Juniper, ICICI, HDFC Bank, etc
  • Spoke at null events and Adobe Tech Summit California
  • Areas of research interest includes Network Penetration Testing, Application Security and Mobile Penetration Testing

Checkout other training

>> Cyber Forensics & Incident Response Training: Click Here

>> Network Forensics & Practical Packet Analysis: Click Here

>>Reverse Engineering & Malware Analysis: Click Here

>>Advanced Android & iOS Hands-on Exploitation - Click here

>>Security Testing In The Cloud: Click Here

>> Decision Summit & Top 100 CISO Awards: Click Here

E-mail me when people leave their comments –
Follow

You need to be a member of CISO Platform to add comments!

Join CISO Platform

RSAC Meetup Banner CP Home Banner SACON Banner