Ethical hacking: webapplicaties

Ethical hacking: webapplications

Target audience

The Ethical hacking: webapplicatins training is relevant for (web)application developers or individuals with a developer background. Not sure if this training is for you… contact us.

Content

During this “Ethical hacking: webapplications” training, we will discuss the 10 most common security vulnerabilities in web applications as published by the “Open Web Application Security Project (OWASP)” organization. The use of the OWASP top 10 is perhaps the most effective step towards improving the software development culture within your organization towards a culture producing safer code. Next to learning about these top 10 vulnerabilities, you will also learn how to hack a webapplication containing these vulnerabilities. By immediately putting theory into practice you will reap the most rewards from this training.

During this training we will discuss every part of the OWASP top 10:

A01: Broken Access Control
A02: Cryptographic Failures
A03: Injection
A04: Insecure Design
A05: Security Misconfiguration
A06: Vulnerable and Outdated Components
A07: Identification and Authentication Failures
A08: Software and Data Integrity Failures
A09: Security Logging and Monitoring Failures
A10: Server-Side Request Forgery

Practically we also:

Get started with web applications that contain these vulnerabilities. In this way you really learn to recognize the vulnerabilities.

Relevance

This training is important to you because it prioritizes you and your organization regarding the risks to focus on and helps you understand, identify, mitigate and resolve vulnerabilities in your technology. Each identified risk is prioritized based on prevalence, detectability, impact and exploitability. As you become increasingly aware of your security while doing so, it is an ideal starting point to ensure your applications address each of these top ten risks.

The S-Unit

The S-Unit offers a unique look at the OWASP top 10, from a hackers perspective. The S-Unit works with the OWASP top 10 on a daily basis and has translated this experience into the training material.

Prior knowledge

Basic knowledge on developing webapplications is needed to follow this training. Knowledge on specific programming languages is not needed.

Included

Training material
Lunch
Certificate of participation

You need to bring

A laptop on with Burp Suite Community Edition installed

Nick Bruinsma
Ethical Hacker – The S-Unit

Nick Bruinsma is an ethical hacker at The S-Unit with a master's degree in IT Law. Nick has worked as a software developer and therefore likes to perform white box and mobile app pentests. Reading source code is a fun challenge for him to find vulnerabilities that are not always easy to find from a black-box perspective. Nick is OSCP, OSWE, OSWP and AZ-500 certified. He is also a trainer at The S-Unit, where he provides training on a wide range of security (related) topics. In his spare time he likes to read books, study Brazilian Portuguese, more hacking techniques or random trivia to be able to win in 30 seconds.

Training location

Savannahweg 71, 3542 AW Utrecht.

Accessibility

Click here for directions to The S-Unit office.  

Lunch

Lunch is included in this training.

Start and end time

9:00 am to 5:00 pm CEST.

Language

The language of the training is always indicated. If you would like to follow the training in another language, please contact us. If there is sufficient interest, the training will also be offered in other languages..

Are you missing information or do you have special wishes?

Send an email to [email protected] and we contact you!!