Call : (+91) 968636 4243
Mail : info@EncartaLabs.com
EncartaLabs

Rapid7 InsightAppSec

( Duration: 1 Day )

Interested in automating your app security scanning and retrieving comprehensive reports for easy analysis? Or do you need to manage scan engines over multiple areas of your network? Say hello to InsightAppSec with this Rapid7 InsightAppSec training course, packed with tips and tricks to help you successfully run app security tests using InsightAppSec. Whether you’re just getting started with application security or are migrating from a different AppSec solution, we will help you master the essentials, including platform requirements and scan configuration, and introduce you to best practices and common troubleshooting techniques to put your team on the fast track to more secure applications.

By attending Rapid7 InsightAppSec workshop, delegates will learn:

  • InsightAppSec Architecture
  • AppSec with InsightAppSec
  • InsightAppSec Primer
  • Connecting an On Premise Scan Engine
  • Configuring Crawl Scans
  • Configuring Attack Scans
  • Authenticated and Unauthenticated Scanning
  • Setting Schedules and Blackouts
  • Using Macros and Recorded Traffic

  • Basic knowledge of network protocols
  • Basic knowledge of vulnerability management systems
  • Basic knowledge of internet traffic

COURSE AGENDA

1

AppSec with InsightAppSec

  • Define application security
  • Common vulnerabilities in web applications
  • How web applications communicate
  • How InsightAppSec test for common vulnerabilities
  • Basic scanning
  • Manage your application settings
2

Features & Architecture

  • Product features
  • Product components
  • How compoenents interact
3

Understanding Scans

  • Configure scans
  • Customize your deployment
  • Establish an engine group
  • Install & pair an on-prem engine
  • Verify the on-prem engine status
  • Read scan logs for diagnostic information
4

Managing Scan Configurations

  • Create an attack template
  • Create a scan configuration
5

Authentication

  • Record an authentication macro
  • Import a macro file for use
  • Use an HTTP archive file for authentication
6

Working with results

  • Manage scan findings
  • Review and validate findings
  • Manually validate a finding
  • Generate a report from a scan
7

Manage Scan Schedules

  • Create an InsightAppSec scan schedule
  • Profile settings
  • Scan schedule
  • Blackout schedule
  • Global blackout
8

Advaced Topics

  • Perform a scan using an API
  • Gather information using the InsightAppSec API
  • Import the InsightAppSec API
  • Modify instructions within a macro file
  • Use enviroments to manage API variables

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting https://www.encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top
Notice
X