coming soon

Coming Soon

We are in process of building the inventory of good professionals in this category

Got it!

Where do you need ?


Please select a Location.


course photo

Web Application Security Testing(WAST)

Gurukul, Ahmedabad


No Feedback Yet

No Reviews Yet
0 Interested

About the Course

Course Overview & Benifits:
This "Web Application Security Testing Course" is specifically designed for QA / Testing folks with or without any knowledge about security testing.
Web Security Overview, Different Websecurity standarads, Different Websecurity standarads, Different Websecurity standarads, Typical Websecurity vulnerabilities. Injection Vulnerabilites, Cross Site Vulnerabilities, Security Remediation - SDLC Process flow, Web Security vulnerabilities Remediation Methods & Techniques, Scanning and Testing Approach/Process, Web Security Scanning and Testing Approach with usage of different tools.
This program will help in gaining a good understanding and knowledge as to how security testing of Web Applications is carried out.

Topics Covered

1. Web Security Overview
2. Different WebSecurity Standards
3. Typical Websecurity Vulnerabilities
• Broken Authentication & session management, Broken Access control, Injection Flaws, Cross Site Scripting, Cross Site Request Forgery, Hidden Field Manipulation, Insecure Storage, Improper session and cookie management, Denial of service, Insecure configuration, Transport level vulnerabilities.
4. Injection Vulnerabilites
• SQL Injection Vulnerabilites, Xpath injection vulnerabilities, Command injection vulnerabilities, XXE injection vulnerabilities, LDAP injection vulnerabilities. Setting and Parsing Cookies Vulnerabilities.
5. Cross Site Vulnerabilities
• Cross Site Scripting vulnerabilities, Cross Site Request Forgery vulnerabilities. Input validation Flaws vulnerabilities, Buffer Overflow Flaws vulnerabilities, Improper Error/Exception Handling vulnerabilities, Improper Access Management vulnerabilities, Denial of Service Vulnerabilities. Improper configuration vulnerabilities.
6. Web Security Vulnerabilities Remediation Methods & Techniques
7. Security Scanning and Testing
• Security Vulnerability Scans and Code Review objective
8. Scanning and Testing Approach/Process
• Security Vulnerability scanning and Testing, Penetration Testing,Manual Vulnerability Testing, Manual Vulnerability Testing
9. Web Security Scanning and Testing Approach with usage of different tools
10. Unit Testing Using Different Web Security Testing tools
• Security Testing Tools

Who should attend

The Workshop is specific to QA / Testing folks, any Manual Tester or Automation Tester with or without any knowledge about Security Testing of Web Applications.


• Participants should have a basic idea of Web Applications.

What you need to bring


Key Takeaways

There are no Reviews yet.
Questions and Comments

Thousands of experts Tutors, Trainers & other Professionals are available to answer your questions

Showing 1 to 1 of 1

Sunny Patel 12/02/2014

I am interested doing this course, basically I am interested in Web Application Security Testing i.e all related to web security. I am having of 3 years experience in manual Web application testing.

Sunny Patel.

0 0


You can add upto 6 Images

There are no Reviews yet.

About the Trainer

Our Consultant picture

Our Consultant


Our Consultanat, has over 10 years of experience in Software Testing and Development. She is currently employed with a big corporate, playing the role of a Test Architect and is leading the team of Mobile Centre of Excellence (CoE).
Our Consultant has exclusively spent 2+ years testing Mobile Applications, Mobile Web & HTML5 for different devices (iPhone, Andriod, blackberry) and has evaluated and analyzed a lot of new tools for testing Mobile applications. She has also extensively worked on a variety of other tools like QTP, LoadRunner, Performance Center, Robotium and JUnit.
Our Consultanat has delivered trainings lot of corporates on various subjects like Mobile Applications Testing, iPhone Testing, Android Testing, Robotium, Selenium, QTP, LoadRunner, Security Testing, etc.
Our Consultanatwas previously employed with Wipro and few Others.

Course Id: 8816