Average Rating: 0.00/10
(# Rating Votes: 0 | Rate This Course | Contribute a Review )
Short Description:
This ultimate web-security class provides security professionals with the knowledge and tools to recognize vulnerabilities, develop countermeasures and perform ongoing assessments.
Full Description:
Ultimate Hacking and Ultimate Web Hacking courses are jointly delivered with our education partner, Global Knowledge.
Because the Web is exploding faster than any other business technology, legacy systems in the enterprise are being replaced at a rapid rate. Browser-based applications powered by web servers and back-end databases are constantly being evaluated and updated. With every application that an enterprise brings online or e-business that goes live, malicious hackers are waiting to attack.
This ultimate web-security class provides security professionals with the knowledge and tools to recognize vulnerabilities, develop countermeasures and perform ongoing assessments. In a hands-on setting, Ultimate Web Hacking instructors offer demonstrations on how attackers can access corporate information with little more than a web browser.
This course qualifies for up to 24 hours of CPE for CISSP/SSCP and 21 hours of CE for CISA/CISM holders.
What You Will Learn?
Unique in the security-training industry, Ultimate Web Hacking will show you not only the latest techniques for exploiting web-based applications, but also how to defend your organization against these weaknesses. Participants learn CGI, ASP, and Cold Fusion vulnerabilities, as well as exploits such as buffer and input-field overflows. Hands-on lab exercises reinforce the course material in a real world environment.
Why Do We Teach This?
As Web technology mushrooms, vulnerabilities multiply and hackers are continuously looking to take advantage of them. In the Internet Age, the way into a company’s network is often right through its web site's home page. Attackers no longer need back doors or sophisticated tools to compromise a system. Security professionals need to learn how to secure and monitor their Web-enabled enterprise, by identifying vulnerabilities that can be exploited both internally and externally.
Who Teaches the Class?
Instructors for this course are Foundstone's management team and training staff. Collectively, they have performed hundreds of Web and e-commerce security assessments, as well as managed security programs at Big 5 accounting firms, within the United States Air Force, and on Wall Street. Foundstone instructors authored the best-selling Hacking Exposed: Network Security Secrets & Solutions, one of the industry's most popular and respected computer-security guides.
Who Should Take the Course?
If you are a system and network administrator, security personnel, an auditor, consultant, and/or web designer concerned with web security, then you should take this course. Basic UNIX and Windows NT competency is required for the course to be fully beneficial.
Topics
Web Reconnaissance
Scanning for Web vulnerabilities
Sifting through the source code for hidden secrets
Retrieving application source code
Web-server vulnerabilities
ASP, CGI, Cold Fusion, Java server vulnerabilities
Input sanitization issues
Buffer overflows
e-Shoplifting
Impersonation using cookies
Hacking SSL-enabled sites
Lab Exercises
Site duplication
Manual vulnerability scanning
SSL enumeration
E-mail and external link searches
Source-code retrieval
ASP, CGI, Cold Fusion and Java server vulnerability exploitation
Input field overflow exploitation
Exploiting SSL-enabled sites
What Do You Get?
Includes an individual dual-boot Windows/Linux laptop for use during the course, use of the lab network and computers, class handouts, and a CD-ROM with course tools and scripts. Breakfast and an afternoon snack are provided.
Duration:
3 days
Price:
$2995
Submitted by: admin
Hits: 0
Foundstone's Ultimate Web Hacking Course Web Page
|
