This course will take you through the basics of Web Application Testing. This will include the various ways as to how a Web application can be attacked and how to secure it. The course will mainly focus on the Open Web Application Security Project(OWASP) and its top 10 for 2013 (latest). The Top 10 focuses on the key aspects of AppSec and how they are manipulated via different tools and techniques. The course will be using ultiple opensource tools for the testing, and all this testing will be performed in Intentionally vulnerable machines within a Virtual Box. Below is the TOC for the same:
The training includes the following;
Getting Started Introduction to AppSec
AppSec – Core Defense Mechanisms
Application Requests & Responses
OWASP Top 10
There is no specific pre-requisite for this course since the course focuses on the basic concepts as well.