DEVELOPER 538

Introduction to Testing Web Apps

This course is a hands on course, it is crucial that attendees follow the laptop requirements and bring their laptops to class ready to participate.

If your organization has a web application (who doesn't), it is probably under attack every single day. Would you want hackers to be the first to test the security posture of your critical web applications? If you don't, security testing for web application during and after development is absolutely necessary. This two day course starts off with a discussion on software security testing and how it fits into the development lifecycle. We will then arm you with testing methodologies and security testing theories, so you can apply these testing concepts to any of your web applications.

Testing web applications manually can be very time consuming and not very practical. To ensure you feel confident about testing web applications, we introduce you to many web application security testing tools. We will fill your arsenal with the right tools to get the job done.

We then end the second day with a testing session where you will be using the testing concepts learned in class to launch the testing tools against a vulnerable web application. This class gives you the know-how to test common vulnerabilities in web applications so you can hit the ground running when it comes to testing web application's security posture.

Course Prerequisites

This course assumes an understanding of web applications vulnerabilities. SANS SEC519 course (Web Application Security Workshop) or equivalent is highly recommended.

Very intense. I have never been to a conference where we received so much information and so much more to learn post-conference.
-Paul Abels, UPS