Web Application Security professional

Who should attend?

Anyone who is interested for securing Web application security and  IT professionals, and web app developers, testers, designers,Project mangers can  Join this course.

Basic Terminologies of Web application Security and Standards
  • Introduction to WAPT
  • Global Standards & Frameworks
  • OWASP top 10
  • Web Technologies – front-end and back-end technology
  • General web application architecture
Vulnerability Assessment and Automated Scanning Analysis
  • Burp suite Essentials
  • Website Reconnaissance and Foot printing
  • Types of Testing methodologies
  • Open source Tools and Testing Methodologies
Next Gen Web App Sec Terminologies
  • Business Logic Testings
  • Thick Client and Thin Client Testing
  • Threat Modelling
  • DevSecOps
  • Secure SDLC
  • Bug Bounty Essentials
Manual Web Application Security Attacks
  • Injections
  • Broken authentication
  • Sensitive data exposure
  • Broken Access control
  • Security misconfiguration
  • Cross-site scripting
  • Insecure deserialization
  • Using components with known vulnerabilities
  • Insufficient logging & monitoring
  • Beyond owasp attacks 
  • Web services attacks 
Countermeasures
  • OWASP countermeasures
  • Server auditing 
Professional Web Application Report Writing
  • Guidelines to make WAPT report
  • Revalidation report