AppSpider Pro Certified Specialist Training : Mastering the essentials of AppSpider Pro

Partager cette formation
Détails de la formation

Say hello to AppSpider Pro with this two-day interactive course, packed with tips and tricks to help you successfully run app security tests using AppSpider Pro. Whether you’re just getting started with application security or are migrating from a different AppSec solution, our experts will help you master the essentials, including installation requirements and scan configuration, and introduce you to best practice and common troubleshooting techniques to put your team on the fast track to more secure applications. Even better? Participants will receive 16 CPEs upon course completion.

Who is the audience?

We also offer on-site training, which provides hands-on opportunities to apply your new skills in a fun (and educational) scenario in your own environment. The end result is a strong understanding of AppSpider Pro and how to use it to address your own application security goals. All participants can also access the AppSpider Pro Certified Administrator exam, so they can leverage newfound knowledge to become a certified specialist and further their careers.

What are the prerequisites?

We also offer on-site training, which provides hands-on opportunities to apply your new skills in a fun (and educational) scenario in your own environment. The end result is a strong understanding of AppSpider Pro and how to use it to address your own application security goals. All participants can also access the AppSpider Pro Certified Administrator exam, so they can leverage newfound knowledge to become a certified specialist and further their careers.

GET EVEN MORE WITH ON-SITE TRAINING

We also offer on-site training, which provides hands-on opportunities to apply your new skills in a fun (and educational) scenario in your own environment. The end result is a strong understanding of AppSpider Pro and how to use it to address your own application security goals. All participants can also access the AppSpider Pro Certified Administrator exam, so they can leverage newfound knowledge to become a certified specialist and further their careers.

WHAT YOU’LL LEARN

Introduction to AppSpider

• Architecture

• Prerequisites and install options

• Use of scan engines in an enterprise environment

• Installation process

• Architecture

AppSec with AppSpider

• AppSec basics

• Using AppSpider for AppSec

• Web scanning basicsenvironment

Operationalizing AppSpider

• Scan configuration

• Authenticated scanning

• Reporting

• Scanning APIs

• Leveraging additional tools

Administer

• User access

• Environment configuration

• Troubleshooting

  • Day 1

    On Day 1, participants will be given a refresher on application security from both a product agnostic and an AppSpider Pro focused perspective. We’ll also run practical labs focused on installation basics, as well as run- ning authenticated and unauthenticated scans.

    • Lecture – Introduction to the AppSpider Pro Architecture and Installation

    • Lecture – AppSec 101

    • Lecture – AppSec with AppSpider Pro

    • Activity – Unauthenticated Crawl Scan

    • Lecture – Web App 101

    • Lecture – Scan Configuration Basics

    • Activity – Unauthenticated Attack Scan

    • Lecture – Authenticated Scanning

    • Activity – Form Authentication Crawl Scan

    • Activity – Macro Recording

    • Activity – Full Attack Scan with Authentication

  • Day 2

    The second day will continue to focus on operationalizing AppSpider Pro and will cover administering the tool. Ensuring how to leverage the data that is gathered and how to validate the authenticity of it will be key focus areas, along with exploring advanced scanning techniques. Labs will involve running API scans, vulnerability validation, and an administrative overview of AppSpider Pro.

    • Lecture – Reporting Best Practices

    • Lecture – Vulnerability Validation Methodologies

    • Activity – Vulnerability Validation

    • Lecture – Administrative Overview

    • Lecture – Troubleshooting Best Practices

    • Lecture – Scanning an API

    • Activity – Manual API Assessment

    • Activity – Running an API Scan

    • Activity – Leveraging the Swagger Utility

    • Activity – Running an Advanced API Scan

    • Lecture – Utilizing Additional Tools


Détails de la formation