Udemy – Security for Developers an Offensive Approach

Security for Developers an Offensive Approach
English | Tutorial | Size: 2.07 GB


Develop “Out-of-box” thinking related to web secure codin and see security from offensive perspective

You will learn to protect your web application by attacking it, by performing penetration testing on it. This course is rather theoretical with only some labs and demos.

Objectives

Develop “Out-of-box” thinking

See security from an offensive perspective

Learn best security practices and (most and less) common attacks

Learn to defend your applications and infrastructure

Topics

Overview of Web Penetration Testing

OWASP Top Ten Web Vulnerabilities

API Top Ten vulnerabilities

HTTP Security Headers

JSON Web Tokens

Technical measures and best practices

Cryptography

Overview of Web Penetration Testing

Core problems

Web Technologies basics

Security Audit vs Vulnerability Assessment vs Pentest

Information Gathering

Scanning and Enumeration

Mapping the target surface

Attacking Users. Cross Site Scripting

Attacking the Server

Attacking Authentication

Attacking Data Stores

Top 10 API Security Vulnerabilities

API Vulnerabilities

Examples of vulnerabilities found in publicly accessible applications

OWASP Top Ten Web Vulnerabilities

A1: Injection

A2 – Broken Authentication and Session Management

A3 – Cross-Site Scripting (XSS)

A4 – Insecure Direct Object References

A5 – Security Misconfiguration

A6 – Sensitive data Exposure

A7 – Missing Function Level Access Control

A8 – Cross-Site Request Forgery (CSRF)

A9 – Using Components with Known Vulnerabilities

A10 – Unvalidated Redirects and Forwards

New Addition in OWASP TOP 10 – 2017

A4 – XML External entities (XXE)

A5 – Broken Access Control

A8 – Insecure Deserialization

A10 – Insufficient Logging & Monitoring

New additions in 2021

Common Vulnerabilities: XSS, SQL Injection, CSRF, XXE, LFI

HTTP Security Headers

Understand HTTP Security Tokens and their role

HSTS – Strict-Transport-Security

CSP – Content-Security-Policy

CORS

X-Frame-Options

X-XSS-Protection

X-Content-Type-Options

Referrer-Policy

Cookie flags: HTTPOnly, Secure

JSON Web Tokens

Understanding JSON WEB TOKENS

Token Structure

When can you use JWT

Issues

What is JWT good for?

Best Practices for JSON Web Tokens

Technical measures and best practices

Input Validation

Encoding

Bind Parameters for Database Queries

Protect Data in Transit

Hash and Salt Your Users’ Passwords

Encrypt Data at Rest

Logging – Best practices

Authenticate Users Safely

Protect User Sessions

Authorize Actions

Cryptography

Cryptographic concepts

Algorithms

Cryptography and cryptanalysis tools

Cryptography attacks

Buy Long-term Premium Accounts To Support Me & Max Speed


RAPIDGATOR
rapidgator.net/file/6fbf5731f90298bb93ce92d28ffc3051/Security_for_Developers_an_Offensive_Approach.part1.rar.html
rapidgator.net/file/b26cd381bdd850b6bf5bb11a3ec40f77/Security_for_Developers_an_Offensive_Approach.part2.rar.html
rapidgator.net/file/4a92d1b0ec9d020b8e5db20394fb2f76/Security_for_Developers_an_Offensive_Approach.part3.rar.html
rapidgator.net/file/a46eaf47fc366856ed9585415c61bda1/Security_for_Developers_an_Offensive_Approach.part4.rar.html

NITROFLARE
nitroflare.com/view/A2E534A23E2195E/Security_for_Developers_an_Offensive_Approach.part1.rar
nitroflare.com/view/3050DE4BEBC81C3/Security_for_Developers_an_Offensive_Approach.part2.rar
nitroflare.com/view/17736CEA3975490/Security_for_Developers_an_Offensive_Approach.part3.rar
nitroflare.com/view/4121A4E75567614/Security_for_Developers_an_Offensive_Approach.part4.rar

If any links die or problem unrar, send request to goo.gl/aUHSZc

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.