Summer of Learn: when booking two courses before July 31, save 50% on the second one.
Bright days ahead: our UK training centre has reopened.

EC-Council - CAST - Advanced Application Security

Varighet

Varighet:

Bare 3 dager

Metode

Metode:

klasserommet / på nett / Hybrid

Neste dato

Neste dato:

28/9/2020 (Mandag)

Overview

The EC-Council Centre of Advanced Security Training has arrived at Firebrand Training. This three-day Advanced Application Security course is intensive, and focuses on combating attacks by improving your code-writing.

You will learn how to attack applications on the web, off-the-shelf binary applications and runtimes such as .NET, Java and Adobe AIR. This all takes place on a Virtual Machine, which you keep after the course.

Warning: This is not a beginner’s course. You'll spend 50% of the course in hands-on coding labs, so you must have some programming experience. The course is right for you if you're an: application developer, software programmer or pen tester.

Learn how to use these tools and techniques:

  • SSL compelled certificate injection
  • SSL renegotiation
  • CRL libraries
  • SQL root kits
  • XSS
  • 'Fuzzing' (most programmers aren't aware of this, but your code should be fuzzed!)

Note: this course doesn't include an exam, but you'll become Advanced Application Security certified.

9x Accredited Training Centre of the Year

Accredited Training Centre of the Year

Firebrand Training has again won the EC-Council Accredited Training Centre of the Year Award, from a Training Partner network that has more than 700 training centres across 107 countries. This extends a record-breaking run of successive awards to nine years.

Jay Bavisi, President of EC-Council said: “The annual EC-Council Awards highlights the commitment and achievements of our global partners and trainers that have contributed to the information security community.”

Her er 8 grunner til hvorfor du skal gjennomføre ditt CAST AAS hos Firebrand Training:

  1. Du blir utdannet og sertifisert på bare 3 dager. Hos oss får du din utdanning og sertifisering på rekordtid, en sertifisering du også gjennomfører der og da som en integrert del av den intensive, akselererte utdanningen.
  2. Alt er inkludert. Et engangsbeløp dekker alt kursmaterial, eksamen, kost og losji og tilbyr den mest kostnadseffektive måten å gjennomføre ditt CAST AAS kurs og sertifisering på. Og dette uten noen uannonserte ytterligere kostnader.
  3. Du klarer sertifiseringen første gangen eller kan gå kurset om igjen kostnadsfritt. Det er vår garanti. Vi er sikre på at du vil klare din CAST AAS sertifisering første gangen. Men skulle du mot formodning ikke gjøre det kan du innen et år komme tilbake og kun betale for eventuelle overnattinger og din eksamen. Alt annet er gratis.
  4. Du lærer deg mer.Tradisjonelle utdanningsdager varer fra kl. 09.00 til 16.00 med lange lunsj- og kaffepauser. Hos Firebrand Training får du minst 12 timers effektiv og fokusert kvalitetsutdanning hver dag sammen med din instruktør, uten private eller arbeidsrelaterte, forstyrrende momenter.
  5. Du lærer deg CAST AAS raskere. Vi kombinerer de tre innlæringsmetodene (Presentasjon |Øving| Diskusjon) slik at vi gjennomfører kurset på en måte som sikrer at du lærer deg raskere og lettere.
  6. Du er i sikre hender.Vi har utdannet og sertifisert 75.977 personer, vi er partner med alle de store navn i bransjen og vi har vunnet atskillige utmerkelser, bla. a. "Årets Learning Partner 2010, 2011, 2012, 2013 og 2015” fra Microsoft Danmark og med en vekst på 1430 % siden 2009 er vi årets Gazelle prisvinner på Sjælland, Danmark.
  7. Du lærer deg ikke bare teorien. Vi har videreutviklet CAST AAS kursen og tilbyr flere praktiske øvelser og sikrer på den måten, at du kan bruke dine ferdigheter for å løse daglige praktiske problemstillinger.
  8. Du lærer av de beste. Våre instruktører på CAST AAS er de beste i bransjen og tilbyr en helt unik blanding av kunnskap, praktisk erfaring og pasjon for å lære bort.

Benefits

Curriculum

Module 1: Advanced Fuzzing Technology

  • Making the application "hiccup"

Module 2: Programming to defend against Attacking from the outside (Over the Web)

  • XSS on Steroids
  • XSRF – The newest Dangers
  • Click Jacking
  • Filter, Filter, Filter
  • Learn New Techniques for Sanitizing input that actually work!
  • The Bank Robber in the Vault Scenario

Module 3: Programming to defend against Attacking From the Inside – Binary Bypassing Antivirus

  • Packing Binaries
  • Crypting Binaries

Module 4: Programming to defend against Attacking From the Same LAN, vLan or Network Segment

  • Arp Cache Poison
  • DNS Poison and Redirection techniques
  • Route Table Poisoning

Module 5: Programming techniques to defend against MiTM attacks of all kinds

  • MITM techniques
  • Quick Overview of Popular Tools
  • Programmers Risk Sheet Checklist!

Module 6: Programming to defend against Cryptographic Errors

  • SSL – The ugly truth. How it can help and hurt you and how to properly use Libraries to ensure your protected
  • Don’t let the User make Security Decisions

Module 7: SQL- DataBase RootKits

  • Ask the Database a question (Query)
  • But receive back what the attacker wants you to receive back.

Appendix: Handy Definitions and Examples Checklist with Examples for Programmers for each Attack and Weakness.

What's Included

Official EC-Council Courseware

  • CAST 613 - Advanced Application Security

Prerequisites

Warning: This is not a beginner’s course. You'll spend 50% of the course in hands-on coding labs, so you must have some programming experience. The course is right for you if you're an: application developer, software programmer or pen tester.

You must be familiar with IT security best practices, and have a good understanding of programming logic and common web technologies, as well as binary applications:

  • Basic Windows administration for servers and workstations
  • Basic Linux/NIX system administration skill
  • Basic command line proficiency on both Windows and NIX systems

Anmeldelser

Vi har lært opp 75.977 personer på 12 år. Vi ba dem om å anmelde vår akselererte opplæring. Akkurat nå har 96,74% angitt at Firebrand overgikk forventningene:

"The chance of having training on your facilities with no disruption is amazing. "
Jorge Neves . (27/4/2020 (Mandag) til 1/5/2020 (Fredag))

"The instructor was fantastic for CEH v10, and gave us a solid understanding of the exam - he also did his best for us by showing us industry standard equipment/knowledge that we should be familiar with outside of the exam. The instructor was very professional, responsive to help us, and was very well-versed in his teachings."
SA. (27/4/2020 (Mandag) til 1/5/2020 (Fredag))

"The instructor was very professional and knowledgeable, who was happy to discuss the points and techniques required for the role. The course was rigorous, but made sure that everything that you need is there. Buying the course myself, I am very happy with the results and plan to put this knowledge and skills learned to good use."
CM. (10/4/2020 (Fredag) til 14/4/2020 (Tirsdag))

"Instructor was very good and very knowledgeable in the subject area, made the course very enjoyable."
Louis Watanabe. (10/4/2020 (Fredag) til 14/4/2020 (Tirsdag))

"The instructor was very knowledgeable, professional and simply brilliant with the explanations and demonstrations of the various testing tools including trouble shooting any student installation issues. We used the remote OIL service and it was like being in the classroom with regards using the labs and viewing the course presentation slides."
Mark Grover, Infosec Consulting ltd. (23/3/2020 (Mandag) til 27/3/2020 (Fredag))

Kursdatoer

Start

Slutt

Kapasitet

Plass

Registrer deg

25/5/2020 (Mandag)

27/5/2020 (Onsdag)

Ferdig

-

 

28/9/2020 (Mandag)

30/9/2020 (Onsdag)

Venteliste

Landsdekkende

 

9/11/2020 (Mandag)

11/11/2020 (Onsdag)

Begrenset kapasitet

Landsdekkende

 

21/12/2020 (Mandag)

23/12/2020 (Onsdag)

Ledige plasser

Landsdekkende

 

1/2/2021 (Mandag)

3/2/2021 (Onsdag)

Ledige plasser

Landsdekkende

 

15/3/2021 (Mandag)

17/3/2021 (Onsdag)

Ledige plasser

Landsdekkende

 

Siste anmeldelser fra studenten vår