Looking for Global training? Go to https://firebrand.training/en or stay on the current site (Danmark)


One way or another, we get you certified
Our accelerated courses are now available online. Save 50% on a second course if you attend one before the end of April 2020.

EC-Council CAST - Advanced Application Security

- Just 3 Days

The EC-Council Centre of Advanced Security Training has arrived at Firebrand Training. This three-day Advanced Application Security course is intensive, and focuses on combating attacks by improving your code-writing.

You will learn how to attack applications on the web, off-the-shelf binary applications and runtimes such as .NET, Java and Adobe AIR. This all takes place on a Virtual Machine, which you keep after the course.

Warning: This is not a beginner’s course. You'll spend 50% of the course in hands-on coding labs, so you must have some programming experience. The course is right for you if you're an: application developer, software programmer or pen tester.


Learn how to use these tools and techniques:

  • SSL compelled certificate injection
  • SSL renegotiation
  • CRL libraries
  • SQL root kits
  • XSS
  • 'Fuzzing' (most programmers aren't aware of this, but your code should be fuzzed!)

Note: this course doesn't include an exam, but you'll become Advanced Application Security certified.

9x Accredited Training Centre of the Year

Accredited Training Centre of the Year

Firebrand Training has again won the EC-Council Accredited Training Centre of the Year Award, from a Training Partner network that has more than 700 training centres across 107 countries. This extends a record-breaking run of successive awards to nine years.

Jay Bavisi, President of EC-Council said: “The annual EC-Council Awards highlights the commitment and achievements of our global partners and trainers that have contributed to the information security community.”

See Benefits...

See prices now to find out how much you could save when you train at twice the speed.

Four reasons why you should sit your CAST AAS course with Firebrand Training

  1. You'll be CAST AAS trained and certified faster. Learn more on this 3-day accelerated course. You'll get at least 12 hours a day of quality learning time in a distraction-free environment
  2. Your CAST AAS course is all-inclusive. One simple price covers all course materials, exams, accommodation and meals – so you can focus on learning
  3. Pass CAST AAS first time or train again for free. Your expert instructor will deliver our unique accelerated learning methods, allowing you to learn faster and be in the best possible position to pass first time. In the unlikely event that you don't, it's covered by your Certification Guarantee
  4. Study CAST AAS with an award-winning training provider. We've won the Learning and Performance Institute's "Training Company of the Year" three times. Firebrand is your fastest way to learn, with 75.348 students saving more than one million hours since 2001

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

Module 1: Advanced Fuzzing Technology

  • Making the application "hiccup"

Module 2: Programming to defend against Attacking from the outside (Over the Web)

  • XSS on Steroids
  • XSRF – The newest Dangers
  • Click Jacking
  • Filter, Filter, Filter
  • Learn New Techniques for Sanitizing input that actually work!
  • The Bank Robber in the Vault Scenario

Module 3: Programming to defend against Attacking From the Inside – Binary Bypassing Antivirus

  • Packing Binaries
  • Crypting Binaries

Module 4: Programming to defend against Attacking From the Same LAN, vLan or Network Segment

  • Arp Cache Poison
  • DNS Poison and Redirection techniques
  • Route Table Poisoning

Module 5: Programming techniques to defend against MiTM attacks of all kinds

  • MITM techniques
  • Quick Overview of Popular Tools
  • Programmers Risk Sheet Checklist!

Module 6: Programming to defend against Cryptographic Errors

  • SSL – The ugly truth. How it can help and hurt you and how to properly use Libraries to ensure your protected
  • Don’t let the User make Security Decisions

Module 7: SQL- DataBase RootKits

  • Ask the Database a question (Query)
  • But receive back what the attacker wants you to receive back.

Appendix: Handy Definitions and Examples Checklist with Examples for Programmers for each Attack and Weakness.

See What's Included...

Official EC-Council Courseware

  • CAST 613 - Advanced Application Security

Your accelerated course includes:

  • Accommodation
  • Meals, unlimited snacks, beverages, tea and coffee
  • On-site exams**
  • Exam vouchers**
  • Practice tests*
  • Certification Guarantee**
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Hands-on training through Lecture | Lab | ReviewTM
  • Digital courseware (if available)
  • * Some exceptions apply
  • ** Some exceptions apply. Please refer to the Exam Track
  • *** Pass first time or train again free (just pay for accommodation, exams and incidental costs)

See Prerequisites...

Warning: This is not a beginner’s course. You'll spend 50% of the course in hands-on coding labs, so you must have some programming experience. The course is right for you if you're an: application developer, software programmer or pen tester.

You must be familiar with IT security best practices, and have a good understanding of programming logic and common web technologies, as well as binary applications:

  • Basic Windows administration for servers and workstations
  • Basic Linux/NIX system administration skill
  • Basic command line proficiency on both Windows and NIX systems

Are you ready to get certified in record time?

We interview all applicants for the course on their technical background, degrees and certifications held, and general suitability. If you get through this screening process, it means you stand a great chance of passing.

Firebrand Training is an immersive training environment. You must be committed to the course. The above prerequisites are guidelines, but many students with less experience have other background or traits that have enabled their success in accelerated training through Firebrand Training.

If you have any doubts as to whether you meet the pre-requisites please call 78 79 16 53 and speak to one of our enrolment consultants, who can help you with a training plan.

See When...

EC-Council CAST AAS Course Dates





Book now

24/2/2020 (Monday)

26/2/2020 (Wednesday)




29/6/2020 (Monday)

1/7/2020 (Wednesday)

Wait list



10/8/2020 (Monday)

12/8/2020 (Wednesday)

Limited availability



21/9/2020 (Monday)

23/9/2020 (Wednesday)




2/11/2020 (Monday)

4/11/2020 (Wednesday)




14/12/2020 (Monday)

16/12/2020 (Wednesday)




We've currently trained 75.348 students in 12 years. We asked them all to review our Accelerated Learning. Currently,
96,78% have said Firebrand exceeded their expectations:

"Excellent course for it security leaders with facilities to watch... Highly recommended"
Steve Mcdonnell, Prepaid Financial Services Ltd. (4/3/2020 to 6/3/2020)

"Excellent way to focus attention"
Richard Sowden, Tilney. (4/3/2020 to 6/3/2020)

"It was a very good training. I appreciated a lot trainers expertise and professionalism. I would recommend this training to my colleagues."
Julien JOUANNET, Network and Security. (16/12/2019 to 20/12/2019)

"The CEH class conducted by Firebrand''s instructor was quite interesting, I learned something new for myself and deepened existing knowledge. It was a please to work with a such skilled trainer."
M.O., Amadeus. (16/12/2019 to 20/12/2019)

"The instructor was very clear and had interesting experiences to share, illustrating lots of training cases. I recommend."
V.M.. (16/12/2019 to 20/12/2019)

Latest Reviews from our students