Certificate Authentication

Secure Developer .NET (Inc OWASP)- Bespoke Certificate for Thomas...

Add to LinkedIn

Certificate ID: 
704195
Authentication Code: 
a8774
Certified Person Name: 
Thomas Martin
Trainer Name: 
Cezary Cerekwicki
Duration Days: 
3
Duration Hours: 
21
Course Name: 
Secure Developer .NET (Inc OWASP)- Bespoke
Course Date: 
9 January 2023 09:30 to 11 January 2023 16:30
Course Outline: 

Day 1 - Backend

Time slot   Type       Topic
9:00 - 9:50 Lecture: Introduction. OWASP Top 10, CWE Top 25
10:00 - 10:50 Exercise: SAST workflow. Rule building
11:00 - 12:00 Lecture: App Boundary. Authentication, Authorization
12:00 - 13:00 Lunch break
13:00 - 13:50 Exercise: Login screen, session, IDORs, API hacking, etc
14:00 - 14:50 Lecture: Session management, input validation
15:00 - 16:00 Exercise: Hacking sessions, etc

Day 2 - Backend / Network

Time slot    Type     Topic
9:00 - 9:50 Lecture: DAST. Fuzzing
10:00 - 10:50 Exercise: Writing fuzz tests
11:00 - 12:00 Lecture: OS command injections, path traversals, insecure uploads
12:00 - 13:00 Lunch break
13:00 - 13:50 Exercise: Hacking insecure uploads, injections, etc
14:00 - 14:50 Lecture: Network security
15:00 - 16:00 Exercise: Wireshark. Qualys SSL labs. DevTools

Day 3 - Frontend

Time slot    Type      Topic
9:00 - 9:50 Lecture: Overview of the frontend. Cookies. SOP
10:00 - 10:50 Exercise: Hacking front-end
11:00 - 12:00 Lecture: Cross-site scripting, CSRF
12:00 - 13:00 Lunch break
13:00 - 13:50 Exercise: Hacking front-end
14:00 - 14:50 Lecture: XS-Leaks
15:00 - 16:00 Lecture: Secure design principles: confidentiality, integrity, availability