Course Overview
Security Testing Training Details
-
Duration35-40 houres
-
TypeOnline Training
-
IncludesCourse Meterial
Security testing is a process intended to reveal flaws in the security mechanisms of an information system that protect data and maintain functionality as intended. Due to the logical limitations of security testing, passing security testing is not an indication that no flaws exist or that the system adequately satisfies the security requirements.Typical security requirements may include specific elements of confidentiality, integrity, authentication, availability, authorization and non-repudiation. Actual security requirements tested depend on the security requirements implemented by the system. Security testing as a term has a number of different meanings and can be completed in a number of different ways. As such a Security Taxonomy helps us to understand these different approaches and meanings by providing a base level to work from.
- Training by Realtime Expert trainer
- Live Online Classes
- Free study material
- Online virtual Classes available in morning, evening and weekend
Prerequisties
- Familiarity with Web applications and software testing Familiarity with HTML, JavaScript, and SQL is helpful, but not required
Duration
Online- The format is 40% theory, 60% Hands-on.
- It is a 20 days program and extends up to 2hrs each.
- The format is 40% theory, 60% Hands-on.
- It is a 5 days program and extends up to 8hrs each.
- Private Classroom arrenged on request and minimum attendies for batch is 4.
Course Content
- Brief history, Examples
- Need for security testing
- Work profile, Career opp
- Skill requirement
- HTTP Protocol
- Cookies
- Query parameters
- HTTPfox
- TamperFox
- Firebug
- Threat Modeling
- Finding Entry Points - Files
- Finding Entry Points - Sockets
- Finding Entry Points - HTTP
- Requests
- Finding Entry Points - Server
- Responses
- Finding Entry Points - UI
- Finding Entry Points - SQL
- Finding Entry Points - Email
- Finding Entry Points - Command
- Line
- Estimation
- Information Disclosure
- Weak Permissions
- Social Engineering
- Log Analysis
- Error / Exception Analysis
- Credential Transport
- User Enumeration
- Dictionary Accounts
- Brute Force
- Vulnerable Password recovery
- Log out
- Cache
- Path Traversal
- Bypass authrization
- Privilege Escalation
- Cookies
- Session Fixation
- Exposed Session Variables
- Example
- Potential threat
- Attack Technique
- Black box testing strategy
- XML
- LDAP
- Xpath
- IMAP
- Code
- HTML
- Example
- Types: Reflected, Persistent
- Potential threat
- Attack Technique
- Black box testing strategy
- File Based
- eb Based
- Stack
- Integer
- Heap
- Locking
- I/O
- SQL WildCard attacks
- Security Testing Reso
Introduction to Security Testing
Basics of HTTP
Introduction to tools
Planning Security Testing
Passive Analysis
Authentication Testing
Authorization Testing
Session Management Testing
SQL Injection
Other Injections
Cross Site Scripting
Cross Site Request Forgery
Canonicalization
Buffer Overflow
Denial Of Service
Course Calender

12th Jan
Saturday
7:00 AM IST
Enroll Now

15th Jan
Tuesday
7:00 AM IST
Enroll Now
Review
Score Breakdown
4.6 / 5.0
90% recommend this course
Score Breakdown
-
(58)
-
(132)
-
(89)
-
(58)
-
(9)
Average Rating For
- Content 4.5
- Knowledge 4.5
- Assignment 4.2
- Institute 4.3
- Instructor 4.4
-
Antony Robert
18/03/2016
Great experience! Thanks Ecorptrainings for providing an online learning platform where courses can be taken from anywhere and anytime as per convenience. I attended Workday training and Workday HCM training and both the courses were really good. I would definitely recommend Ecorptrainings Thanks Ecorp
-
Rajesh
18/03/2016
Ecorptrainings is an interactive and innovative way of evangelizing us toward various courses. The best stars for Ecorptrainings lies on the ticket solving and their tailored courses. Instructors are knowledgeable and interactive in teaching. Workday training sessions are well structured with a proper content in helping us to dive. Good course material and structured modules in each course..