Security testing is a process intended to reveal flaws in the security mechanisms of an information system that protect data and maintain functionality as intended. Due to the logical limitations of security testing, passing security testing is not an indication that no flaws exist or that the system adequately satisfies the security requirements.Typical security requirements may include specific elements of confidentiality, integrity, authentication, availability, authorization and non-repudiation. Actual security requirements tested depend on the security requirements implemented by the system. Security testing as a term has a number of different meanings and can be completed in a number of different ways. As such a Security Taxonomy helps us to understand these different approaches and meanings by providing a base level to work from.

• Training by Realtime Expert trainer
• Live Online Classes
• Free study material
• Online virtual Classes available in morning, evening and weekend

Prerequisties

• Familiarity with Web applications and software testing Familiarity with HTML, JavaScript, and SQL is helpful, but not required

Duration

Online

• The format is 40% theory, 60% Hands-on.
• It is a 20 days program and extends up to 2hrs each.

Corporate

• The format is 40% theory, 60% Hands-on.
• It is a 5 days program and extends up to 8hrs each.

Classroom

• Private Classroom arrenged on request and minimum attendies for batch is 4.

Course Content

Introduction to Security Testing

• Brief history, Examples
• Need for security testing
• Work profile, Career opp
• Skill requirement

Basics of HTTP

• HTTP Protocol
• Cookies
• Query parameters

Introduction to tools

• HTTPfox
• TamperFox
• Firebug

Planning Security Testing

• Threat Modeling
• Finding Entry Points - Files
• Finding Entry Points - Sockets
• Finding Entry Points - HTTP
• Requests
• Finding Entry Points - Server
• Responses
• Finding Entry Points - UI
• Finding Entry Points - SQL
• Finding Entry Points - Email
• Finding Entry Points - Command
• Line
• Estimation

Passive Analysis

• Information Disclosure
• Weak Permissions
• Social Engineering
• Log Analysis
• Error / Exception Analysis

Authentication Testing

• Credential Transport
• User Enumeration
• Dictionary Accounts
• Brute Force
• Vulnerable Password recovery
• Log out
• Cache

Authorization Testing

• Path Traversal
• Bypass authrization
• Privilege Escalation

Session Management Testing

• Cookies
• Session Fixation
• Exposed Session Variables

SQL Injection

• Example
• Potential threat
• Attack Technique
• Black box testing strategy

Other Injections

• XML
• LDAP
• Xpath
• IMAP
• Code
• HTML

Cross Site Scripting

• Example
• Types: Reflected, Persistent
• Potential threat
• Attack Technique
• Black box testing strategy

Cross Site Request Forgery

Canonicalization

• File Based
• eb Based

Buffer Overflow

• Stack
• Integer
• Heap

Denial Of Service

• Locking
• I/O
• SQL WildCard attacks
• Security Testing Reso