Helloboss

Secure and protect your web applications

at 13 KM

OXiane Luxembourg

  • Training
  • Business
  • Cybersecurity
  • Internet
  • Strategy
  • Technology
  • Programming
  • Digital
  • Security

Goals
● Discover classic and modern Web threats.
● Identify your weak points.
● Correct your vulnerabilities and develop in a secure way.
● Set up and operate a security "monitoring" system to detect and react to intrusion attempts.

Program

Web applications and threats
● How does the Web work: DNS / HTTP / TLS.
● How do single-page applications work?
● KYA: "Know Your Attacker". Know your attacker.
● Threats: Man In The Browser / Malware Distribution /

Advanced Persistent Threat / Ransomware.
● Risks.

Vulnerabilities

The vulnerabilities presented below will be tested
trainees in the form of an "ethical hacking" workshop on a
deliberately vulnerable application.
● Code injection.
● SQL injection.
● "Broken Authentication and Session Management".
● "Reflected XSS", "Persistent XSS" and "DOM XSS".
● "Insecure Direct Object Reference".
● Configuration errors.
● Exposure of sensitive data.
● Insufficient checks of the data exchanged.
● Cross-Site Request Forgery.
● Use of vulnerable components.
● Unverified redirects.

Single-Page Application and REST API Security
● DOM XSS.
● Client validation vs. API validation.
● Leaks and unauthorized access to API resources.
● Authentication token leak.

TLS, strong authentication and authentication
● Choice of cryptographic algorithms to use.
● Authentication with client certificate and PKCS # 11.
● Authentication with "One-Time Password".

ModSecurity
● Setting up ModSecurity.
● Edit and manage ModSecurity rules.
● ModSecurity scoring system.
● "Virtual patching" with ModSecurity.

"Monitoring" security with ModSecurity and Splunk.
● Correlation of events.
● Creation of dashboards.

+ info

Good to know

● Code: DW-SECU
● Duration: 3 days (21 hours)
Public
● Project managers
● Developers
● Type of action: Acquisition of knowledge
● Training resources: Face-to-face training - 1 position per trainee - 1 video projector - Course support provided at each
trainee
● Teaching methods: Presentations - Practical cases - Synthesis
● Validation: Validation exercises - Certificate of internships

Book your ticket

Organizer

Oxiane

Give a call 27 39 35 1

Where does it take place?

20 Rue de l'Industrie
Windhof
Luxembourg

8310 Luxembourg 20 Rue de l'Industrie, Windhof, Luxembourg
Itinerary
SEE MAP
REF.#319 - A MISTAKE? LET US KNOW

You could like it :

2021: the year of the business woman in Luxembourg

More than just a feminist desire, has gender parity at work become a fashionable phenomenon? Be...
THE AGENDA

find out about all the networking events and trainings tailored for you!

5 trendy words to show off with your colleagues

To help you to be the King/Queen in society, at HelloBoss, we decided to slip you a few words t...
  • Add to your favorites
CLOSE

Favorites

To check your Favorites, connect to your account!

CLOSE

Favorites

To check your Favorites, connect to your account!

CLOSE

Hey you! Interested in the Helloboss app?

CLOSE

Customize your results

Sign in to get access to your preferences!

CLOSE

Follow a theme

Sign in to follow this category!

CLOSE

Follow trainings

Sign in to follow this Good Address!

CLOSE

Follow a Business

Sign in to follow this business!

CLOSE

Yes I want to delete it

Yes No

tu n'as pas autorisé la localisation ?

CLOSE
CLOSE