A deep dive into web application security, expanding on the foundations covered in our basics course. This training explores advanced attack scenarios, defense strategies, and secure development practices for modern application environments.
Strengthen your team’s security expertise with advanced tools and tactics
This course is for development teams who want to better understand modern web application threats and how to defend against them. It’s designed to build on your existing knowledge and help you apply secure development practices in real-world projects.
Duration
6h
Capacity
15–20 persons
For
Developers & testers
Example agenda
MORNING
Recap from Basics of web application security
Security layers How different layers are used to secure a web application and its background services, and what types of vulnerabilities exist in different layers
Handling input What are the typical pathways from which input comes to a system, and what to take into account when validating it
AFTERNOON
Exploit anatomy Case examples of advanced exploits in modern technologies
Hands-on exercises Discovering and exploiting common vulnerabilities in a realistic web application environment
Security controls Ten security controls that every developer should know
Wrapping up & next steps
The actual agenda is planned together in the kick-off meeting.
Feedback from attendees
“A well-balanced course, containing adequately hands-on exercises. Bonus for OSS tools that are available after the course!”
“Thanks for the course! The hands-on approach was good for the ’gut feeling’ of what cyber security vulnerabilities can be causing.”
“Very nice training! The trainer was clearly a professional and conveyed the topics clearly and understandably. The hands-on parts were interesting and provided concrete insights.”
Your certified and expert partner
Silverskin is a CREST-certified provider of penetration testing services. CREST is an international certification organisation for information security. Leading cybersecurity organisations such as GIAC and OffSec have certified our experts.
