Loading...

IIT Madras is conducting hands on training on "web application security" for Engineering College Faculty

About

Today, usage of web applications are more prevalent in the society due to ease of deployment. At the same time, it faces security threats that could pose significant risks to personal and official information if not handled properly.  Awareness is necessary on how to provide security for such applications.
 
 IIT Madras intended to conduct hands on training on "web application security" covering wide topics on Overview of the web from a penetration testers perspective, Burp Suite and OWASP from 24th August 2016 to 26th August 2016 at Hall 2, IITM Research park, IIT Madras. Faculty members, if interested can participate  and enrich your knowledge.

Web Application Security: Course Agenda
LAPTOPS REQUIRED
 
SL. No.  
SESSION
 
 
INSTRUCTORS
 
TIME
DAY 1
 
 
D1-S1-1 What is Web application Security & Why do you need it?
Overview of the web from a penetration testers perspective
Exploring the various servers and clients
Discussion of the various web architectures
Discussion of the different types of vulnerabilities
Defining a web application test scope and process
Defining types of penetration testing
 
 
 
 
 
 
9:00 AM to 10:15 AM
COFFEE / TEA BREAK - 10:15 AM TO 10:30 AM
D1-S2-1 Utilizing the Burp Suite in web app penetration testing
Discovering the infrastructure within the application
Identifying the machines and operating systems
Exploring virtual hosting and its impact on testing
Software configuration discovery
Exploring external information sources
Learning tools to spider a website
 
   
10:30 AM to 12:45 PM
LUNCH BREAK - 12:45 PM TO 1:15 PM
D1-S3-1 Web Application Security: OWASP
Common Issues in Web Apps
What is XSS, SQL injection, CSRF, Password Vulnerabilities, SSL, CAPTCHA, Session Hijacking, Local and Remote File Inclusion, Audit Trails, Web Server Issues, etc
   
 
   1:15 PM to 3:00 PM
COFFEE / TEA BREAK - 3:00 PM TO 3:15 PM
D1-S4-1 Continued from S3-1    
  3:15 PM to 6:00 PM
 
 
DAY 2
 
 
 
D2-S1-1 Owasp A1 to A6
 
   
 
 9:00 AM to 10:15 AM
COFFEE / TEA BREAK - 10:15 AM TO 10:30 AM
D2-S2-1 Owasp A6 to A8
 
   
10:30 AM to 12:45 PM
LUNCH BREAK - 12:45 PM TO 1:45 PM
D2-S3-1 Owasp A8 to A10
 
 
 
 
 
 1:45 PM to 3:00 PM
COFFEE / TEA BREAK - 3:00 PM TO 3:15 PM
D2-S4-1 Review of other areas in testing
 
   
 3:15 PM to 6:00 PM
 
 
 
DAY 3
 
 
 
D2-S1-1 Practical with Test Site    
 
 9:00 AM to 10:15 AM
COFFEE / TEA BREAK - 10:15 AM TO 10:30 AM
D2-S2-1 Practical with Test Site    
10:30 AM to 12:45 PM
LUNCH BREAK - 12:45 PM TO 1:45 PM
D2-S3-1 Practical with Test Site  
 
 
 1:45 PM to 3:00 PM
COFFEE / TEA BREAK - 3:00 PM TO 3:15 PM
D2-S4-1 Review of vulnerabilities
 
   
 3:15 PM to 6:00 PM
D2-S4-2 Reporting requirements  
 
 
 
 

Style Switcher

Predefined Colors

Layout Style

Header Color

Footer Top Color

Footer Bottom Color