Length: 2 days

Prerequisites: Prior attendance of the CSTA Ethical Hacking: Hands-On training course (or equivalent) is strongly recommended. A basic understanding of HTTP & HTML is needed.

Web application vulnerabilities can pose serious problems to an organisation’s security. Many do not realise how much control an attacker can gain via a simple flaw in the security of a public-facing web application.

The CSTP commands industry recognition and forms part of 7Safe’s ground-breaking Masters-level education programme.

What you will learn:

• Review of professional penetration testing tools
• Further exercises against Windows and UNIX targets
• The Metasploit framework
• Web application security, including:
• SQL Injection
• Cross-site scripting (XSS)
• Cross-site request forgeries (CSRF)
• Threats to users

Who should attend:
Those responsible for, or with an interest in, the security of IT systems and web applications, including (but not limited to): System/Network Administrators, Crime Prevention & Protection Officers, Auditors, Security Officers, Information Security Professionals& Pen-Testers.

Benefits:

• Develop your skills in a state-of-the-art class environment with Windows & Linux operating systems & associated server software
• Gain experience testing and exploiting purposebuilt victim machines and applications
• Journey through various aspects of a pen test, such as the core infrastructure, web applications and client-side assessment
• Includes an examination, successful completion of which earns delegates the industry-recognised CSTP certification
• Around 20 hands-on practical exercises, using a wide variety of hacking tools