Logo
NewsCase StudiesContactWhere are you? UK 🌐

CREST Certified Web Application Tester (CCT APP)

Logo

What you'll learn

The accelerated CREST Certified Web Application Tester (CCTT APP) certification is an assessment of the candidate’s ability to find vulnerabilities in bespoke web applications. The examination uses specially designed applications running on a variety of web application platforms and now covers a wider scope than purely traditional web applications to include more recent advances in the field of web application technology and security. The candidate will be expected to demonstrate that they are able to find a range of security flaws and vulnerabilities, including proving the ability to exploit and leverage the flaws to ascertain the impact of the issues found.

In addition to traditional web application security, it is advised that candidates familiarise themselves with the following topics which are included in the practical examination and also may be included in the written components:

  • Flash Application Testing
  • .Net Thick Clients
  • Java Applets
  • Identification of functionality within client-side code that is accessible only to privileged users
  • Vulnerabilities in increasingly prevalent application frameworks – e.g. Rails
  • Identification of more recent SSL vulnerabilities – e.g. BEAST
  • HTTP Header Fields relating to security features – e.g. HSTS
  • Decompilation of client-side code – e.g. Flash, Java, .Net
  • Web Server security misconfigurations – e.g. WebDAV

At the end of this course, you’ll achieve your CREST Certified Web Application Tester (CCTT APP) certification. Through Firebrand’s Lecture | Lab | Review methodology, you’ll get certified at twice the speed of the traditional training and get access to courseware, learn from certified instructors, and train in a distraction-free environment.

Audience

  • The CREST Practitioner level examinations are the entry level professional exams and are aimed at individuals with around 2,500 hours (two years) of relevant and frequent experience.
  • The CREST Registered level examinations are the next step and by passing this you are demonstrating your commitment as an information security tester. Typically, candidates wishing to sit a Registered examination should have at least 6,000 hours (three years or more) of relevant and frequent experience.
  • The CREST Certified level examinations are designed to set the benchmark for senior professionals. These are the certifications to which most aspire and the examinations are aimed at individuals with approximately 10,000 hours (five to six years) of relevant and frequent experience.The above timescales are recommended, not mandatory.

Curriculum

9 modules
  • Module 1: Flash Application Testing
  • Module 2: .Net Thick Clients
  • Module 3: Java Applets
  • Module 4: Identification of functionality within client-side code that is accessible only to privileged users
  • Module 5: Vulnerabilities in increasingly prevalent application frameworks – e.g. Rails
  • Module 6: Identification of more recent SSL vulnerabilities – e.g. BEAST
  • Module 7: HTTP Header Fields relating to security features – e.g. HSTS
  • Module 8: Decompilation of client-side code – e.g. Flash, Java, .Net
  • Module 9: Web Server security misconfigurations – e.g. WebDAV

Prerequisites

    • The CREST Practitioner level examinations are the entry level professional exams and are aimed at individuals with around 2,500 hours (two years) of relevant and frequent experience.
    • The CREST Registered level examinations are the next step and by passing this you are demonstrating your commitment as an information security tester. Typically, candidates wishing to sit a Registered examination should have at least 6,000 hours (three years or more) of relevant and frequent experience.
    • The CREST Certified level examinations are designed to set the benchmark for senior professionals. These are the certifications to which most aspire and the examinations are aimed at individuals with approximately 10,000 hours (five to six years) of relevant and frequent experience.The above timescales are recommended, not mandatory.

Exam info

  • At the end of this accelerated course, you’ll sit the following exam at the Firebrand Training centre, covered Certification Guarantee:

    CREST Certified Web Application Tester (CCTT APP) Exam

    • Duration: 3 hours
    • Format: 150 multiple choice questions
    • Number of questions: 150
    • Passing score: 60%

Course Dates

Sorry, there are currently no dates available for this course. Please submit an enquiry and one of our team will contact you about potential future dates or alternative options.

FAQs

4 question

Yes, we do provide courses suitable for beginners. However, Firebrand's accelerated courses aren't easy and it's essential that you are interested and actively pursuing a career in IT.

Traditional training providers usually run their courses from 9am to 5pm. At Firebrand Training we maximise the number of learning hours to minimise the number of training days, so you’ll be back to your job as quickly as possible. You don’t waste time travelling to several courses and finding an exam centre after that.

Firebrand's accelerated courses are constantly reviewed. We ask our delegates for feedback after every course. We are official partners with leading vendors and therefore, we're provided with certification changes and updates, which we can then implement in our course delivery at a very early stage. This feedback is then analysed in view of changes or discrepancies. We will then address the topics mentioned and have a panel of subject matter experts provide us with valuable suggestions for improvement and solutions.

If you need to learn new skills and you want to be able to put them into practice quickly, then Firebrand is the right training company for you.

Our unique accelerated training method means that we are your fastest way to learn. By delivering training for up to 12 hours per day, seven days per week, with exam centres on-site, we ensure that you are trained and certified quicker than anywhere else, having spent less time out of the office away from the day job.

Can't find the answer you're looking for?

Our expert learning advisors are ready to help. Whether you need course recommendations, have technical queries, or want to discuss your learning goals, we're just a message away.

Related courses

All CREST Courses
Logo

Train your team

Since 2001 we've trained 134,561 employees from thousands of large and small organisations, saving them more than one million hours in training time.

Learn More