Application Security Fundamentals for the Absolute Beginners

سرفصل های دوره

Application Security with Hands On Demos | Security Certifications | Hands On Demos | Prepare Interview Questions

01 - Introduction and Agenda

001 Introduction And Course Agenda

02 - Basics of Application Security

001 SDLC vs Secure SDLC

002 Security Activities at each phase in Secure SDLC

003 Security Job Roles to perform security activities at each phase in Secure SDLC

004 Find security jobs on job hunting platforms in application security

005 Technical Requirements and Expertise for a job of Sr Security Engineer

006 Technical Requirements and Expertise for a job of DevSecOps Engineer

007 Technical Requirements and Expertise for a job of VAPT Engineer

008 Technical Requirements and Expertise for a job of Pen Test Engineer

009 Common Technical Requirements and Expertise for Security Job Roles

03 - Basic Application Security Terms with Hands-On Demo

001 Static Application Security Testing and its tools

002 Hands On SAST scan using Fortify On Demand

003 SBOM or Software Bill of Material (Also called SCA) and its tools

004 Hands On SCA scan using Snyk

005 Dynamic Application Security Testing and its tools

006 Hands On DAST scan using Hosted OWASP ZAP

007 Container Security Basics and its tools

008 Hands On Container Security scan using Snyk

008 SnykContainerSecurityScanWithCli.txt

009 Infrastructure As Code Basics and its tools

010 CheckovIACSecurityScan.txt

010 Hands On IAC Security Scanning Demo using Checkov

011 Hands On IAC Security Scanning Demo using BridgeCrew

012 What is CWE & CVE & CVSS

013 What is False Positive Analysis

014 Hands On FPA Demo

external-links.txt

04 - Lab Environment Setup for learning basic security requirements i.e. OWASP TOP 10

001 Hands On Install NodeJs for OWASP Juice Shop - First Step

002 Hands On Install OWASP Juice Shop on local System - Part 2

003 Hands On Install Burp Suite on Local System

004 Hands On Configure Burp Suite with Chrome Browser

external-links.txt

05 - Hands On with Basics Deep Dive in OWASP TOP 10

001 A012021-Broken Access Control

002 A022021-Cryptographic Failures

003 A032021-Injection

004 A042021-Insecure Design

005 A052021-Security Misconfiguration

006 A062021-Vulnerable and Outdated Components

007 A072021-Identification and Authentication Failures

008 A082021-Software and Data Integrity Failures

009 A092021-Security Logging and Monitoring Failures

010 A102021-Server-Side Request Forgery

external-links.txt

06 - Learn Security Architecture and Review with Threat Modeling in App Security

001 What is Security Architecture & Design Review (SAR)

002 4 Step Process to perform Security Architecture & Design Review in Real Life

003 Hands On Create an account with IriusRisk

004 Hands On Create a Data Flow Diagram with Irius Risk

005 Hands On Perform Threat Modeling and Generate Reports using IriusRisk

external-links.txt

07 - Learn DevSecOps in Application Security with Example

001 What is DevSecOps

002 Tools used for DevSecOps Implementation in the market - Detailed discussion

003 Case Study Understanding Project Requirements before workflow implementation

004 Hands On Write code changes to integrate SAST, SCA & DAST in DevSecOps Pipeline

005 Hands On Execute End to End GitLab DevSecOps Pipeline and review logs

external-links.txt

08 - Application Security Interview QuestionsAnswers and CV

001 Application Security Interview Questions and Answers.html

002 Sample CV for an application security engineer.html

09 - Next Steps

001 Bonus Lecture.html

139,000 تومان

افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: Udemy