Sec 1

Training

The Sec-1 Assessment portfolio has been designed to provide organisations with a complete range of network security testing services.

• Security Testing
• Products & Services
• Training

• Ethical Hacking and Countermeasures
• Securing Web Applications
• Wireless Hacking and Countermeasures

Securing Web Applications

Course Overview

The Securing Web Applications course has been developed to provide attendees with the skills required to:

• Assess their web applications for the top ten vulnerabilities
• Interpret the results of their assessment
• Eradicate discovered vulnerabilities

This concise hands-on one day course will allow you to attack our specially developed web application to discover vulnerabilities. Each of the top ten web application vulnerabilities are covered through a mix of theory and hands on labs to ensure you gain the maximum skills transfer.

 Course Outcomes

Upon completion of this course you will receive:

• An assessment toolkit CD including Open Source assessment tools, exploit code and proprietary tools created by Sec-1.
• A 230+ page course manual
• A VMWare image of the target web application used throughout the course to practice and improve your skills

 Benefits

As an attendee you will:

• Gain hands on experience of the techniques used to discover, exploit and resolve powerful security flaws such as Cross-Site Scripting and SQL Injection.
• Use Open Source tools to assess your web applications for security flaws including those defined within the OWASP Top 10.
• Resolve web application security flaws of provide consultancy to your development team.
• Receive tuition from Gary O'Leary-Steele, CREST approved penetration tester and co-author of SQL Injection Attacks and Defence

 Who Should Attend This Course?

The course is relevant to attendees who are interested in or responsible for network security including:

• IT Professionals
• IT Managers
• IT Security Officers

 Prerequisites

The following skills are desirable:

• Some experience of web development
• Administrating Windows
• TCP/IP
• NetBIOS
• Windows File Sharing
• DNS, WINS and DHCP
• NTFS and File Permissions
• Linux - Configuring IP address
• Linux - Configuring Routing

 

‘I thoroughly enjoyed my day with Sec-1, the live hacking was a real eye opener. It showed how online tools are readily available for hackers to use, which has led me to take preventative steps to ensure this doesn't happen to our network. Overall an informative day which I would actively recommend to others.'

Paul Bargewell
Charnwood Borough Council