Skip to main content

Ethical hacking: webapplications

 

Target audience

The Ethical hacking: webapplicatins training is relevant for (web)application developers or individuals with a developer background. Not sure if this training is for you… contact us.

Content

During this “Ethical hacking: webapplications” training, we will discuss the 10 most common security vulnerabilities in web applications as published by the “Open Web Application Security Project (OWASP)” organization. The use of the OWASP top 10 is perhaps the most effective step towards improving the software development culture within your organization towards a culture producing safer code. Next to learning about these top 10 vulnerabilities, you will also learn how to hack a webapplication containing these vulnerabilities. By immediately putting theory into practice you will reap the most rewards from this training. 

During this training we will discuss every part of the OWASP top 10:  

  • A01: Broken Access Control 
  • A02: Cryptographic Failures 
  • A03: Injection  
  • A04: Insecure Design 
  • A05: Security Misconfiguration 
  • A06: Vulnerable and Outdated Components 
  • A07: Identification and Authentication Failures 
  • A08: Software and Data Integrity Failures 
  • A09: Security Logging and Monitoring Failures 
  • A10: Server-Side Request Forgery  

Practically we also: 

  • Get started with web applications that contain these vulnerabilities. In this way you really learn to recognize the vulnerabilities. 

Relevance

This training is important to you because it prioritizes you and your organization regarding the risks to focus on and helps you understand, identify, mitigate and resolve vulnerabilities in your technology. Each identified risk is prioritized based on prevalence, detectability, impact and exploitability. As you become increasingly aware of your security while doing so, it is an ideal starting point to ensure your applications address each of these top ten risks. 

The S-Unit

The S-Unit offers a unique look at the OWASP top 10, from a hackers perspective. The S-Unit works with the OWASP top 10 on a daily basis and has translated this experience into the training material. 

Prior knowledge

Basic knowledge on developing webapplications is needed to follow this training. Knowledge on specific programming languages is not needed. 

Included

  • Training material 
  • Lunch 
  • Certificate of participation 

You need to bring

  • A laptop on with Burp Suite Community Edition installed

 

Nick Bruinsma
Ethical Hacker – The S-Unit

Nick Bruinsma is an ethical hacker at The S-Unit with a master's degree in IT Law. Nick has worked as a software developer and therefore likes to perform white box and mobile app pentests. Reading source code is a fun challenge for him to find vulnerabilities that are not always easy to find from a black-box perspective. Nick is OSCP, OSWE, OSWP and AZ-500 certified. He is also a trainer at The S-Unit, where he provides training on a wide range of security (related) topics. In his spare time he likes to read books, study Brazilian Portuguese, more hacking techniques or random trivia to be able to win in 30 seconds.

 

Training location

Savannahweg 71, 3542 AW Utrecht.

Accessibility

Click here for directions to The S-Unit office.  

Lunch

Lunch is included in this training.

Start and end time

9:00 am to 5:00 pm CEST.

Language

The language of the training is always indicated. If you would like to follow the training in another language, please contact us. If there is sufficient interest, the training will also be offered in other languages..  

 

Are you missing information or do you have special wishes?

Send an email to [email protected] and we contact you!!

Practical information
back-in-time (2) kopiëren
Duration
2 days
Time 2
Time
9:00 am to 5:00 pm CEST
dollar-bill
Costs
€1475,- (excl. VAT)
speech-bubble (5)
Language
Dutch
pin (8)
Location
Office The S-Unit
Dates 2024
18 – 25 Sep

Ethical hacking: webapplications

Wednesday
03 – 10 Dec

Ethical hacking: webapplications

Tuesday
No event found!
Dave Küppers - Cloud Engineer (Riksja Travel)
30 maart 2023
Read More
Nice setup. Short explanation and then challenges to get started with hacking yourself. Even as a non-developer I learned a lot.
Would you like to know more about the services of The S-Unit? Or do you have another S-ential question for us?
×

 

Hallo!

Heb je een vraag voor ons? Vraag het aan Kai!

× Do you have a question?