This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Tuesday, May 9 • 09:00 - Wednesday, May 10 •17:00
Web Application Security Essentials (2 days)

Sign up or log in to save this to your schedule and see who's attending!

In order to protect your web applications, you need to understand how hackers will attack them. This course combines theory and hands-on practical exercises which will allow participants to learn about common web vulnerabilities such as the ones described in the OWASP Top 10. Participants are given access to a purpose-built web application that contains vulnerabilities discussed during the course and are asked to exploit them using different open source tools and techniques.

Topics covered include:

• Introduction to Web Application Security
• The Security Tester Toolkit
• Critical Areas in Web Applications
• Injection
• Cross Site Scripting (XSS)
• Cross Site Request Forgery (CSRF)
• Broken Authentication and Session Management
• Insecure Direct Object References
• Security Misconfiguration
• Insecure Cryptographic Storage
• Failure to restrict URL Access
• Insufficient Transport Layer Protection
• Unvalidated Redirects and Forwards

avatar for Fabio Cerullo

Fabio Cerullo

Managing Director, Cycubix
Fabio Cerullo has over 15 years of experience in the information security field gained across a diverse range of industries ranging from financial and government institutions to software houses and start-ups. As a member of the OWASP Foundation, Fabio helps individuals and organi... Read More →

Tuesday May 9, 2017 09:00 - Wednesday May 10, 2017 17:00
Broadway Suite Hilton

Attendees (12)