Training Mile2

Training goals dlearning

Course version 4.

Organizations and governments fall victim to internet-based attacks every day. In many cases, web attacks could be thwarted but hackers, organized criminal gangs, and foreign agents are able to exploit weaknesses in web applications. The Secure Web programmer knows how to identify, mitigate and defend against all attacks through designing and building systems that are resistant to failure. The secure web application developer knows how to develop web applications that aren’t subject to common vulnerabilities, and how to test and validate that their applications are secure, reliable and resistant to attack. The vendor-neutral Certified Secure Web Application Engineer certification provides the developer with a thorough and broad understanding of secure application concepts, principles, and standards. The student will be able to design, develop and test web applications that will provide reliable web services that meet functional business requirements and satisfy compliance and assurance needs.

Upon completion

The Certified Secure Web Application Engineer students will be able to establish industry acceptable auditing standards with current best practices and policies. Students will also be prepared to competently take the C)SWAE exam.

Who Should Attend

  • Coders
  • Web Application Engineers
  • IS Managers
  • Application Engineers
  • Developers
  • Programmers

Accreditations & Acknowledgements

Mile2® is:

  • ACCREDITED by the NSA CNSS 4011-4016
  • MAPPED to NIST / Homeland Security NICCS's Cyber Security Workforce Framework
  • APPROVED on the FBI Cyber Security Certification Requirement list (Tier 1-3)

Conspect Show list

  1. Module 1: Web Application Security
  2. Module 2: OWASP Top 10
  3. Module 3: Threat Modeling & Risk Management
  4. Module 4: Application Mapping
  5. Module 5: Authentication and Authorization Attacks
  6. Module 6: Session Management Attacks
  7. Module 7: Application Logic Attacks
  8. Module 8: Data Validation
  9. Module 9: AJAX Attacks
  10. Module 10: Code Review And Security Testing
  11. Module 11: Web Application Penetration Testing
  12. Module 12: Secure SDLC
  13. Module 13: Cryptography

Lab:

  1. Module 1: Environment Setup and Architecture
  2. Module 2: OWASP TOP 10
  3. Module 3: Threat Modeling
  4. Module 4: Application Modeling and Analysis
  5. Module 5: Authentication and Authorization Attacks
  6. Module 6: Session Management Attacks
  7. Module 9: AJAX Security
  8. Module 10-1: Code Review
  9. Module 10-2: Security Test Scripts
  10. Module 10-3: Writing Java Secure Code
  11. Module 11: Alternatives Labs
  12. Lab 11-1 4: WebGoat & WebScarab
  13. Lab 11-2: WebGoat - Cross-Site Request Forgery (CSRF)
  14. Lab 11-3 Missing Function Level Access Control
  15. Lab 11-4: Perform Forced Browsing Attacks
Download conspect training as PDF

Additional information

Requirements
  • A minimum of 24 months’ experience in software technologies & security
  • Sound knowledge of networking
  • At least one coding Language
  • Linux understanding
  • Open shell
Difficulty level
Duration 5 days
Certificate

The participants will obtain certificates signed by Mile2 (course completion).

This course will help prepare you for the Certified Secure Web Application Engineer exam, which is available through the on-line Mile2’s Assessment and Certification System ("MACS"), and is accessible on your mile2.com account.

The exam will take 2 hours and consist of 100 multiple choice questions.

Each participant in an authorized C)SWAE - Certified Secure Web Application Engineer will receive a free CSWAE exam voucher.

Trainer

Certified Mile2 Instructor.

Mile2 show more courses
Training thematically related

IT Security

Contact form

Please fill form below to obtain more info about this training.







* Fields marked with (*) are required !!!

Information on data processing by Compendium - Centrum Edukacyjne Spółka z o.o.

1300 EUR

close

Discount codes

Discount code may refer to (training, producer, deadline). If you have a discount code, enter it in the appropriate field.
(green means entering the correct code | red means the code is incorrect)

FORM OF TRAINING ?

close

Traditional training

Sessions organised at Compendium CE are usually held in our locations in Kraków and Warsaw, but also in venues designated by the client. The group participating in training meets at a specific place and specific time with a coach and actively participates in laboratory sessions.

Dlearning training

You may participate from at any place in the world. It is sufficient to have a computer (or, actually a tablet, or smartphone) connected to the Internet. Compendium CE provides each Distance Learning training participant with adequate software enabling connection to the Data Center. For more information, please visit dlearning.eu site

TRAINING MATERIALS ?

close

Paper materials

Traditional Materials: The price includes standard materials issued in the form of paper books, printed or other, depending on the arrangements with the manufacturer.

Ctab materials

Ctab materials: the price includes ctab tablet and electronic training materials or traditional training materials and supplies provided electronically according to manufacturer's specifications (in PDF or EPUB form). The materials provided are adapted for display on ctab tablets. For more information, check out the ctab website.

 

SELECT TERM TRAINING

No deadlines for this training.

Suggest your own appointment