Vendor:
OffSec 
Category:
As software systems become increasingly complex and interconnected, a robust understanding of vulnerabilities in application security is of utmost importance for any company and its security team.
The independently accessible, online OWASP Top 10 training is designed to provide professionals with essential knowledge and hands-on experience in application security, focusing on the most critical vulnerabilities as outlined by OWASP in the OWASP Top 10.
In this training filled with videos and labs, you will learn to master the core principles of application security, including critical risks from injection flaws to broken authentication. You will gain an overview of defensive strategies that teach your organization to defend against, for example, Cross-Site Scripting and Insecure Deserialization. Finally, you will gain insight into prevention techniques with measures to address security misconfigurations and vulnerable components.
This OWASP Top 10 training is part of OffSec’s Learn Fundamentals license, which gives you one year of access to a wide range of online security learning paths with associated labs and badges to earn. Once you have completed the OWASP training, you can further develop extensively in a large number of other security areas. If you lack prior knowledge, the Learn Fundamentals license also provides you with the opportunity to work on these components in other, preceding learning paths. More information about Learn Fundamentals can be found here.
If desired, this training can also be conducted in-person for groups of about five participants. Please contact us for the possibilities.
Globale inhoud
A01:2021 - Broken Access Control
Ongeautoriseerde toegang voorkomen met de nadruk op effectieve toegangscontrolemechanismen.
A02:2021 - Cryptographic Failures
Duik in de best practices voor beveiliging met behulp van cryptografie, waarbij coderingsfouten en key management worden behandeld.
A03:2021 - Injection
Verschillende injectieaanvallen bestuderen, met de nadruk op veilig coderen om SQL-, Command- en LDAP-injecties te voorkomen.
A04:2021 - Insecure Design
Focus op veilige softwareontwerp principes, waarbij veelvoorkomende ontwerpfouten en effectieve dreigingsmodellering worden benadrukt.
A05:2021 - Security Misconfiguration
Ontdek de impact van een onjuiste beveiligingsconfiguratie en het belang van beveiligde instellingen en configuratiebeheer.
A06:2021 - Vulnerable and Outdated Components
Leer over de risico’s van verouderde componenten en het toepassen van strategieën voor beveiligingspatches en -updates.
A07:2021 - Identification and Authentication Failures
Het belang van robuuste authenticatiesystemen leren begrijpen, inclusief multifactor authenticatie en sessiebeheer
A08:2021 - Software and Data Integrity Failures
Leer de integriteit van software- en gegevensbescherming, met de nadruk op het voorkomen van gecompromitteerde updates en gegevensmanipulatie.
A09:2021 - Security Logging and Monitoring Failures
De rol van logging en monitoring in de security onderkennen, met betrekking tot best practices in log management en SIEM-systemen
A10:2021 - Server-Side Request Forgery (SSRF)
Onderzoek SSRF-aanvallen en verdedigingstechnieken, inclusief invoervalidatie, whitelisting en netwerksegmentatie
As software systems become increasingly complex and interconnected, a robust understanding of vulnerabilities in application security is of utmost importance for any company and its security team.
The independently accessible, online OWASP Top 10 training is designed to provide professionals with essential knowledge and hands-on experience in application security, focusing on the most critical vulnerabilities as outlined by OWASP in the OWASP Top 10.
In this training filled with videos and labs, you will learn to master the core principles of application security, including critical risks from injection flaws to broken authentication. You will gain an overview of defensive strategies that teach your organization to defend against, for example, Cross-Site Scripting and Insecure Deserialization. Finally, you will gain insight into prevention techniques with measures to address security misconfigurations and vulnerable components.
This OWASP Top 10 training is part of OffSec’s Learn Fundamentals license, which gives you one year of access to a wide range of online security learning paths with associated labs and badges to earn. Once you have completed the OWASP training, you can further develop extensively in a large number of other security areas. If you lack prior knowledge, the Learn Fundamentals license also provides you with the opportunity to work on these components in other, preceding learning paths. More information about Learn Fundamentals can be found here.
If desired, this training can also be conducted in-person for groups of about five participants. Please contact us for the possibilities.
Globale inhoud
A01:2021 - Broken Access Control
Ongeautoriseerde toegang voorkomen met de nadruk op effectieve toegangscontrolemechanismen.
A02:2021 - Cryptographic Failures
Duik in de best practices voor beveiliging met behulp van cryptografie, waarbij coderingsfouten en key management worden behandeld.
A03:2021 - Injection
Verschillende injectieaanvallen bestuderen, met de nadruk op veilig coderen om SQL-, Command- en LDAP-injecties te voorkomen.
A04:2021 - Insecure Design
Focus op veilige softwareontwerp principes, waarbij veelvoorkomende ontwerpfouten en effectieve dreigingsmodellering worden benadrukt.
A05:2021 - Security Misconfiguration
Ontdek de impact van een onjuiste beveiligingsconfiguratie en het belang van beveiligde instellingen en configuratiebeheer.
A06:2021 - Vulnerable and Outdated Components
Leer over de risico’s van verouderde componenten en het toepassen van strategieën voor beveiligingspatches en -updates.
A07:2021 - Identification and Authentication Failures
Het belang van robuuste authenticatiesystemen leren begrijpen, inclusief multifactor authenticatie en sessiebeheer
A08:2021 - Software and Data Integrity Failures
Leer de integriteit van software- en gegevensbescherming, met de nadruk op het voorkomen van gecompromitteerde updates en gegevensmanipulatie.
A09:2021 - Security Logging and Monitoring Failures
De rol van logging en monitoring in de security onderkennen, met betrekking tot best practices in log management en SIEM-systemen
A10:2021 - Server-Side Request Forgery (SSRF)
Onderzoek SSRF-aanvallen en verdedigingstechnieken, inclusief invoervalidatie, whitelisting en netwerksegmentatie
This training is scheduled as follows in the coming period. Missing a date? Feel free to contact us.
Price:
Train smarter, not harder. TSTC's unique approach guarantees the effective acquisition of skills and the greatest chance of success.
Learn more about TSTC
