Security Testing Training Course and Workshop in Bangalore, Mysore, Chennai, Hyderabad, Pune, Mumbai, Delhi, Noida, Gurgaon, Kolkata

This Security Testing training course will cover Security testing concepts related to applications and how Security Testing is different from Normal Testing along with coverage on:

Various Types of security Testing & Techniques for applications:

Access Control, Spoofing identity, Denial of Service, Inject Mutated Data (SQL Injection, Function Injection, EOF , LDAP Injection, XML Injection, New line character injected for logs etc.), Leak testing, On Wire Attacks using example application scenarios.

Threat Modeling & the Tester’s role in Threat modeling:

Goals, Responsibilities, Roles (tester’s Role), Threat Modeling Process for B2B applications, DFD, Attack/Threat Trees, Identify, Document, rate & threats (S.T.R.I.D.E., DREAD etc), How to mitigate threats, using Prioritize some standard tools.
Security Code Review with examples of Unsafe API’s and the reasons why they are unsafe.

By attending Security Testing workshop, delegates will learn:

Tp hava a complete understanding of security testing of applications
Different techniques to make application workflows more reliable, and to avoid being used as gateways for hackers

Understanding of basic Testing Concepts
Exposure to Programming

Introduction to security Testing

Building Blocks of B2B Applications & its relation with Security Testing
How Security Testing is different from Normal Testing
Overview of Security testing on applications

Threat Modeling & Code review

Threat Modeling & Testers role (Goals, Responsibilities, Threat Modeling Process for B2B applications, DFD, Attack/Threat Trees, Identify, Document, rate & Prioritize threats (S.T.R.I.D.E., DREAD etc), how to mitigate threats.)
Code Review (Unsafe API’s)
Threat Modeling Exercise

Different types of Security Techniques

Different Types of security Testing & Techniques for B2B applications i.e. Access Control, Spoofing identity, Denial of Service, Inject Mutated Data (SQL Injection, Function Injection, EOF , LDAP Injection, XML Injection, New line character injected for logs etc. ), Leak testing, On Wire Attacks
Standard Tools used (AppScan, Fortify)

Malware overview

Buffer Overflow Attacks
Preventing Buffer Overflow Attacks

Front line functions and their role in security auditing

Security attack diagnosis and mitigation
Security deployment LIfe cycle tasks and processes

Encarta Labs Advantage

One Stop Corporate Training Solution Providers for over 6,000 various courses on a variety of subjects
All courses are delivered by Industry Veterans
Get jumpstarted from newbie to production ready in a matter of few days

Trained more than 50,000 Corporate executives across the Globe
All our trainings are conducted in workshop mode with more focus on hands-on sessions