Mail :
India : +91-8143-111-555
USA : +1-703-445-4802
Whats app : +91-8143-110-555
Facebook Twitter Google Plus Pinit Stumbleupon Youtube Blog

Workday HCM Demo New Batches Starting from Wednesday... 14-12-2016
Search Course Here

Live Chat



Security testing is a process intended to reveal flaws in the security mechanisms of an information system that protect data and maintain functionality as intended. Due to the logical limitations of security testing, passing security testing is not an indication that no flaws exist or that the system adequately satisfies the security requirements.Typical security requirements may include specific elements of confidentiality, integrity, authentication, availability, authorization and non-repudiation. Actual security requirements tested depend on the security requirements implemented by the system. Security testing as a term has a number of different meanings and can be completed in a number of different ways. As such a Security Taxonomy helps us to understand these different approaches and meanings by providing a base level to work from.
  • Familiarity with Web applications and software testing
  • Familiarity with HTML, JavaScript, and SQL is helpful, but not required
  • It is a 20 days program and extends up to 2hrs each.
  • The format is 40% theory, 60% Hands-on.

  • It is a 5 days program and extends up to 8hrs each.
  • The format is 40% theory, 60% Hands-on.
    Private Classroom arranged on request and minimum attendies for batch is 4.
course content
  • Introduction to Security Testing
    • Brief history, Examples
    • Need for security testing
    • Work profile, Career opp
    • Skill requirement
  • Basics of HTTP
    • HTTP Protocol
    • Cookies
    • Query parameters
  • Introduction to tools
    • HTTPfox
    • TamperFox
    • Firebug
  • Planning Security Testing
    • Threat Modeling
    • Finding Entry Points - Files
    • Finding Entry Points - Sockets
    • Finding Entry Points - HTTP
    • Requests
    • Finding Entry Points - Server
    • Responses
    • Finding Entry Points - UI
    • Finding Entry Points - SQL
    • Finding Entry Points - Email
    • Finding Entry Points - Command
    • Line
    • Estimation
  • Passive Analysis
    • Information Disclosure
    • Weak Permissions
    • Social Engineering
    • Log Analysis
    • Error / Exception Analysis
  • Authentication Testing
    • Credential Transport
    • User Enumeration
    • Dictionary Accounts
    • Brute Force
    • Vulnerable Password recovery
    • Log out
    • Cache
  • Authorization Testing
    • Path Traversal
    • Bypass authrization
    • Privilege Escalation
  • Session Management Testing
    • Cookies
    • Session Fixation
    • Exposed Session Variables
  • SQL Injection
    • Example
    • Potential threat
    • Attack Technique
    • Black box testing strategy
  • Other Injections
    • XML
    • LDAP
    • Xpath
    • IMAP
    • Code
    • HTML
  • Cross Site Scripting
    • Example
    • Types: Reflected, Persistent
    • Potential threat
    • Attack Technique
    • Black box testing strategy
  • Cross Site Request Forgery
  • Canonicalization
    • File Based
    • Web Based
  • Buffer Overflow
    • Stack
    • Integer
    • Heap
  • Denial Of Service
    • Locking
    • I/O
    • SQL WildCard attacks
    • Security Testing Reso
SECURITY TESTING videos will be updated soon
To Watch More Videos Click Here

Flash News

AngularJS New Batch Start From 09th DEC & 10th DEC.

Hadoop Dev New Batch Start From 10th DEC & 11th DEC.

IBM COGNOS TM New Batch Start From 11th DEC & 12th DEC.

Informatica Dev New Batch Start From 12th DEC & 13th DEC.

Mean Stack New Batch Start 13th DEC & 14th DEC.

SAP BODS new Batch Starting From 14th DEC & 15th DEC.

SAP S/4 HANA New Batch Start From 15th DEC & 16th DEC

Tableau New Batch Start From 16th DEC & 17th DEC


(1) Workday Technical Demo Training

Demo Schedule : 09:30A.M EST / 08:30A.M CST / 6:30A.M PST on 13th DEC & 07:00A.M IST on 14th DEC

Email :
Rediff Bol :
Google Talk :
MSN Messenger :
Yahoo Messenger :
Skype Talk :