Institute of Information Security | Imbibe, Inspire, Share

Search: Show all / Hide all

Beginners

	TCP IP Fundamentals
	System Fundamentals
	Programming & Database Fundamentals
	Advanced Google Hacking
	Fingerprinting
	Nmapping the network
	Footprinting
	Hacking networks
	Hacking servers
	Hacking databases
	Backdooring
	Hacking WLANs
	Web Application Hacking
	Advanced Web Hacking
	Buffer overflows
	Coding your own exploits
	Metasploiting the universe

	What is Information Security
	What is Information Security Awareness
	Need For Information Security Awareness
	Common Threats
	Ways to Protect

Developers

	Course Overview and Objectives
	Case Studies
	Business Risks from Application Vulnerabilities
	Introduction to web application vulnerabilities
	Application Security – An Overview
	OWASP Top Ten
	OWASP List of Vulnerabilities
	OWASP - Flash Attacks
	OWASP - IFrame Attacks
	Web 2.0
	AJAX Vulnerabilities
	Web Services
	Web Services Vulnerabilities
	Threat Modeling – Objectives
	Threat Modeling – Meaning and terminology
	Threat Modeling – Practical Considerations
	Threat Modeling – Case Study
	Hacker’s Interest Area
	Threat Profiling
	Secure Coding Techniques
	Secure Coding Techniques - Best Practices
	Secure J2EE Programming
	Secure .NET Programming
	Secure PHP Programming
	Significant OWASP Projects
	OWASP Development Guide
	OWASP Testing Guide
	OWASP Code Review Guide
	Functional testing
	Security testing
	Difference between functional & security testing
	Continuous security testing and assessments
	Risks from Outsourcing
	Risk based approach
	Conducting VAPT, Source code audits, Infrastructure reviews
	Test

	Importance of Application Security
	OWASP Top Ten
	Application Security Best Practices
	Security Best Practices for Com+, SQL Server
	Service Account Selection and Management
	Authentication Mode
	Implementing Data Protection
	Validating Application Input
	Evaluating Canonicalization Issues
	Implementing CLR Security Mechanism
	Basic Role Based Security
	Role Based Security with Principal and Identity Objects
	Role Based Security with Permission Objects
	Overview of Code Access Security
	Basic Security Operations
	Adding Permission Requests
	Implementing Symmetric Cryptography
	Implementing Asymmetric Cryptography
	Implementing Authentication in ASP.NET Application
	Implementing Authorization in ASP.NET Application
	Implementing Impersonation in ASP.NET Application
	Securing Web Files and Folders
	Introducing .NET Application Security
	Implementing Authentication an d Authorization in .NET Remote Applications
	Introducing Web Service Security
	Managing Security Policies
	Managing Security Policy Levels
	Deploying .NET Application with appropriate Security Settings

	Threat Modeling
	Secure Designing
	Application Security Design Principles
	Introduction to Web Hacking
	Introduction to Java Framework - J2EE
	Introduction to Java Framework - Struts
	J2EE Framework Enforce Security
	JVM’s Role Byte Code and Type Safety
	Java Language Security and Sandbox Concept
	Authentication and Authorization API’s
	Java Access Control Features - java.security.AccessController
	Java Access Control Features - Inheritance of AccessControlContext
	Java Access Control Features - java.security.ProtectionDomain
	JAAS - Authentication Classes and Interfaces
	JAAS - Authorization Classes
	Java Cryptography Architecture
	Cryptography - Provider Class
	Cryptography - Security Class and the other related Classes
	Accessibility and Extensibility
	Data Validation
	Serialization and Deserialization and other related mistakes
	Vulnerabilities Exploited and Counter Measures
	Database Security - Oracle
	Database Security - MS SQL

Free Demo !!



Sorry, but your browser needs to support iframes to see this