GB
/
GBP
/
EN

Shaping the future of IT skills

Maximising IT performance through learning

NotSoSecure AppSec for Developers - APPSEC

WGAC-CSI-APPSEC

NotSoSecure

Description

Show Tabs
Introduction

Throughout this class, developers will be able to get on the same page with security professionals, understand their language, learn how to fix or mitigate vulnerabilities learnt during the class and get acquainted with some real-world breaches, for example, “The Equifax” breach in September 2017. Various bug bounty case studies from popular websites like Facebook, Google, Shopify, Paypal, Twitter etc will be discussed explaining the financial repercussions of application security vulnerabilities like SSRF, XXE, SQL Injection, Authentication issues etc.

The techniques discussed in this class are mainly focused on .NET, Java and NodeJS technologies owing to their huge adoption in various enterprises in building web applications. However, the approach is kept generic and developers from other language backgrounds can easily grasp and implement the knowledge learned within their own environments.

Delegates will participate in a CTF challenge where they will have the chance to identify vulnerabilities in code snippets derived from real-world applications.

Apart from the various tools and content around the course Delegates will also be provided with a 7-day lab access where they can practice all the exercises/demos shown during the course.

Prerequisites & Audience
Delegates need to have a basic understanding of how web applications work with an added advantage for those who currently develop web applications.
This training is a programming language agnostic.
A Laptop with minimum 4 GB RAM and 1 GB of extra space.
Course Benefits

  • Understand OWASP Top 10 2017 with practical demonstrations and deeper insight.
  • Understand the financial repercussions of different vulnerabilities.
  • Get on the same page with the security team while discussing vulnerabilities.
  • Identify and Fix security vulnerabilities much earlier in the SDLC process saving time and effort

Course Topics

This course covers industry standards such as OWASP top 10 with a practical demonstration of vulnerabilities complemented with hands-on lab practice.
Provides insights into the latest security vulnerabilities (such as host header injection, XML external entity injection, attacks on JWT tokens, deserialization vulnerabilities).
Offers thorough guidance on best security practices (Introduction to various security frameworks and tools and techniques for secure application development).
Makes real-world analogies for each vulnerability explained (Understand and appreciate why Facebook would pay $33,000 for XML Entity Injection vulnerability?).
Provides online labs for hands-on practice during and after the course (2 Days)

Course Outline

Application Security Basics

  • Why do we need Application Security?
  • Understanding OWASP TOP 10

Understanding the HTTP Protocol

  • Understanding HTTP/HTTPS protocol
  • Lab: Configure Burpsuite to intercept HTTP/HTTPS traffic
  • Understanding Requests and Responses
  • Lab: Manipulating HTTP headers
  • Demo: Host Header Injection
  • Mitigation Techniques
  • Attack Surface detection

Security Misconfigurations

  • Common misconfigurations in Web Applications
  • Sensitive Information exposure and how to avoid it
  • Using Softwares with known vulnerabilities
  • Demo : Struts2 RCE

Insufficient Logging and Monitoring

  • Types of Logging
  • Introduction to F-ELK

Authentication Flaws

  • Password Complexity
  • Lab: Bruteforce using Burpsuite Intruder
  • Anti-Automation Techniques
  • Mitigating brute-force attacks
  • Password Storage
  • Crash Course on Cryptography
  • Introduction to HashiCorp Vault
  • Password Recovery – Best Practices
  • NoSQL Security
  • Lab: Bypass NoSQL Authentication
  • Mitigating NoSQL Injections
  • Understanding WebAuthn – Passwordless Authentication Framework

Authorization Bypass Techniques

  • Parameter Manipulation
  • Common Pitfalls and Mitigations
  • API Authentication – JWT
  • Introduction to JWT
  • Lab : Cracking JWT tokens
  • Common JWT Attacks
  • Mitigating JWT Attacks
  • SSO Authentication – OAuth
  • Introduction to OAuth
  • OAuth Flow
  • Lab: Bypass OAuth
  • Common OAuth Attacks
  • Mitigating OAuth Attacks
  • RBAC Bypasses and mitigations
  • Mass Assignment Vulnerability
  • Understanding Mass Assigning/Auto binding
  • Lab: Exploiting Mass Assignment
  • Mitigating Mass Assignment vulnerability
  • Insecure Direct Object References (IDOR)
  • Mitigating IDORs
  • Local file Inclusion (LFI)
  • Lab: Download internal files
  • Mitigating LFI

Cross-Site Scripting (XSS)

  • Understanding XSS
  • Reflected XSS
  • Lab: Exploiting Reflected XSS
  • Demo: Session Hijacking
  • Stored XSS
  • Lab: Exploiting Stored XSS
  • How not to Mitigate XSS
  • Lab: Pitfalls in XSS Defenses
  • Mitigating XSS

Cross-Site Request Forgery Scripting

  • Understanding CSRF
  • Lab: Exploiting CSRF
  • Mitigating CSRF

Server-Side Request Forgery (SSRF)

  • Understanding SSRF
  • Lab: Exploiting SSRF
  • SSRF in Cloud
  • Mitigating SSRF

SQL Injection

  • Understanding SQL Injection
  • Lab: Error-Based SQL Injection
  • Lab: Blind SQL Injection
  • Mitigating SQL Injection
  • ORM Frameworks
  • XML External Entity (XXE) Attacks
  • Understanding XML Entities
  • Understanding XXE Vulnerability
  • Lab: Exploiting XXE Vulnerability
  • Mitigating XXE
  • Unrestricted File Uploads
  • File Upload functionality
  • Lab: Uploading webshells
  • Mitigating File upload vulnerability

Deserialization Vulnerabilities

  • What is Serialization?
  • PHP Object Serialization
  • Demo: PHP Object Deserialization
  • Lab: Exploit PHP Deserialization
  • Java Object Serialization
  • Demo: Java Binary Deserialization
  • Other Java Deserialization
  • Detecting deserialization functions
  • Mitigation for deserialization vulnerabilities

Client-Side Security Concerns

  • Understanding Same Origin Policy
  • Understanding CORS (Cross-Origin Resource Sharing)
  • Demo: CORS
  • Excessive CORS
  • Transport Layer Protection: HSTS
  • Securing Cookies
  • Iframe Security
  • Demo: Clickjacking
  • Content-Security Policy
  • Referrer Policy

Source Code Review

  • Manual Code Review
  • SQL Injection
  • Identify vulnerable libraries
  • Identify Authorization Flaws
  • Log Injections
  • File Handling
  • Insecure Cryptography
  • Automated Code Review
  • Demo: FindSecBugs/CAT.NET
  • Secure Code Review CTF

DevSecOps

  • DevSecOps - What Why and How?
  • DevSecOps Sample Implementation

NotSoSecure courses


NotSoSecure Advanced Infrastructure Hacking - AIH
CODE: WGAC-CSI-AIH
NotSoSecure The Art of Hacking - AoH
CODE: WGAC-CSI-AOH
NotSoSecure Advanced Web Hacking - AWH
CODE: WGAC-CSI-AWH
NotSoSecure Hacking and Securing Cloud Infrastructure
CODE: WGAC-CSI-HSCI
NotSoSecure AppSec for Developers - APPSEC
CODE: WGAC-CSI-APPSEC
NotSoSecure DevSecOps - DEVSECOPS
CODE: WGAC-CSI-DEVSECOPS
NotSoSecure Hacking 101
CODE: WGAC-CSI-HACKING101
Webinar Hacking and Securing Cloud Infrastructure : The Anatomy of a Cloud Hack
CODE: WGAC-CSI-HSCI-WEBINAR
Webinar Basic Infrastructure Hacking : Through an Attacker's Eyes: Your Infrastructure
CODE: WGAC-CSI-BIH-WEBINAR
Webinar Basic Web Hacking : Through an Attacker's Eyes: Your Web Applications
CODE: WGAC-CSI-BWH-WEBINAR
We use cookies to understand how you use our site and to improve your experience. To learn more, click here. Read our revised Privacy Policy and Terms and Conditions.