Application Security Best Practices

Target: Developers QA & Application Security Professionals
Length: 2 Days
Focus: Application Weaknesses, Development Flaws, and Remediation Strategies

Format: Lab & Lecture

Content:

Application Attacks

Execution of the following attacks on web interfaces
Cross-site scripting
Code Injection
Session Hijacking
Enumeration of network and device settings
Enumeration of web server type, either Apache or propriety, and CLI management methods
Denial of Service attacks
Responsible disclosure doctrines and practices

Binary Analysis

Binary analysis with hex editor and an introduction to forensics tools
Binary examination, disassembly, and modification
Run-time debugging and reverse engineering

WORK WITH iSEC PARTNERS

iSEC Partners is always looking to expand its team of experienced technical professionals and continue to provide best-of-breed security solutions to its Fortune-100 customers.

If you are an experienced security researcher, developer, or consultant, please send an ASCII, PDF, or HTML resume to:

careers@isecpartners.com

BOOKS & WHITEPAPERS

Secure Session Management With Cookies for Web Applications

Chris Palmer, Senior Security Consultant

Command Injection in XML Signatures and Encryption

Brad Hill, Principal Security Consultant

Hacking VoIP

Himanshu Dwivedi, Principal Partner

more...