Software Security Institute
Software Security Institute
Home > Courses

Software Security Courses

Choose a subject from the menu above.

Web Applications

  • Web Application Pen Testing Hands-On Immersion : Developer 538

    In the first half of 2008, five million Web sites were compromised by automated SQL injection attacks. The hackers' goal was to inject links to malicious content in order to infect the users of the Web application. These automated attacks do not show any sign of stopping and will likely visit your Web applications in the near future. ... >>more

  • Web App Penetration Testing and Ethical Hacking : Security 542

    Assess Your Web Apps in Depth Web applications are a major point of vulnerability in organizations today. Web app holes have resulted in the theft of millions of credit cards, major financial and reputational damage for hundreds of enterprises, and even the compromise of thousands of browsing machines that visited Web sites altered by attackers.... >>more

Secure Coding

  • Software Security Awareness : Developer 304

    This awareness course discusses design and implementation of software applications to reduce the risk from hackers and attacks. The concept is to engineer software so that it continues to function correctly under malicious attack. This course introduces defensive coding and tips to avoid creating problems or vulnerabilities. We also examine the... >>more

Web Applications

  • Defending Web Applications Security Essentials : Developer 422

    Defending Web applications is critical! Traditional network defenses such as firewalls fail to secure Web applications which have to be available to large user communities. The amount and importance of data entrusted to Web applications is growing, and defenders need to learn how to secure it. DEV422 covers the OWASP Top 10 and will help you to... >>more

  • Secure Code Review for Java Web Apps : Developer 534

    All software development projects produce at least one artifact - CODE! Conducting security focused code reviews can be one of the most effective methods of finding severe application vulnerabilities and is becoming an integral part of many secure software development processes. This course focuses on web application vulnerabilities and shows you... >>more

Secure Coding

  • Secure Coding in Java/JEE: Developing Defensible Applications : Developer 541

    The Difference between Good and Great Programmers Great programmers have traditionally distinguished themselves by the elegance, effectiveness, and reliability of their code. That's still true, but elegance, effectiveness, and reliability have now been joined by security. Major financial institutions and government agencies have informed... >>more

  • Secure Coding for PCI Compliance : Developer 536

    The audit procedure documents for PCI 1.2 tell the auditor that they should look for evidence that web application programmers in a PCI environment have had "training for secure coding techniques." The problem that many business are facing, however, is, "What is that and where can I get it?" This course packs a thorough explanation and... >>more

  • Secure Coding in .NET: Developing Defensible Applications : Developer 544

    ASP.NET and the .NET framework have provided web developers with tools that allow them an unprecedented degree of flexibility and productivity. On the other hand, these sophisticated tools make it easier than ever to miss the little details that allow security vulnerabilities to creep into an application. Since ASP.NET, 2.0 Microsoft has done a... >>more

  • Secure Coding in PHP: Developing Defensible Applications : Developer 545

    This course targets PHP programmers interested in learning more about how to code in PHP securely. It does require a good understanding of PHP and some experience writing PHP code. The code targets both beginning and advanced PHP programmers, but it is not appropriate for those who have not written any PHP code yet. We will not cover how to... >>more

  • Essential Secure Coding in Java/JEE : Developer 530

    Please note that this two-day course is a subset of the material covered in the four-day DEV541. This two-day version is intended to cover the essential Java/JEE topics that are relevant to a large number of web application developers and therefore does not cover all the material that may be present on the GSSP-Java certification exam. DEV541:... >>more

  • Introduction to the Microsoft Security Development Lifecycle : Developer 320

    In this introductory class, you will learn the history of the SDL at Microsoft and its goals and benefits that can be applied to your organization. Each of its seven phases will be introduced to you in detail. You will also learn why it is so critical for any development organization to embed security and privacy into software development and... >>more

All Courses

  • Web Application Pen Testing Hands-On Immersion : Developer 538

    In the first half of 2008, five million Web sites were compromised by automated SQL injection attacks. The hackers' goal was to inject links to malicious content in order to infect the users of the Web application. These automated attacks do not show any sign of stopping and will likely visit your Web applications in the near future. ... >>more

  • Web App Penetration Testing and Ethical Hacking : Security 542

    Assess Your Web Apps in Depth Web applications are a major point of vulnerability in organizations today. Web app holes have resulted in the theft of millions of credit cards, major financial and reputational damage for hundreds of enterprises, and even the compromise of thousands of browsing machines that visited Web sites altered by attackers.... >>more

  • Software Security Awareness : Developer 304

    This awareness course discusses design and implementation of software applications to reduce the risk from hackers and attacks. The concept is to engineer software so that it continues to function correctly under malicious attack. This course introduces defensive coding and tips to avoid creating problems or vulnerabilities. We also examine the... >>more

  • Defending Web Applications Security Essentials : Developer 422

    Defending Web applications is critical! Traditional network defenses such as firewalls fail to secure Web applications which have to be available to large user communities. The amount and importance of data entrusted to Web applications is growing, and defenders need to learn how to secure it. DEV422 covers the OWASP Top 10 and will help you to... >>more

  • Secure Code Review for Java Web Apps : Developer 534

    All software development projects produce at least one artifact - CODE! Conducting security focused code reviews can be one of the most effective methods of finding severe application vulnerabilities and is becoming an integral part of many secure software development processes. This course focuses on web application vulnerabilities and shows you... >>more

  • Secure Coding in Java/JEE: Developing Defensible Applications : Developer 541

    The Difference between Good and Great Programmers Great programmers have traditionally distinguished themselves by the elegance, effectiveness, and reliability of their code. That's still true, but elegance, effectiveness, and reliability have now been joined by security. Major financial institutions and government agencies have informed... >>more

  • Secure Coding for PCI Compliance : Developer 536

    The audit procedure documents for PCI 1.2 tell the auditor that they should look for evidence that web application programmers in a PCI environment have had "training for secure coding techniques." The problem that many business are facing, however, is, "What is that and where can I get it?" This course packs a thorough explanation and... >>more

  • Secure Coding in .NET: Developing Defensible Applications : Developer 544

    ASP.NET and the .NET framework have provided web developers with tools that allow them an unprecedented degree of flexibility and productivity. On the other hand, these sophisticated tools make it easier than ever to miss the little details that allow security vulnerabilities to creep into an application. Since ASP.NET, 2.0 Microsoft has done a... >>more

  • Secure Coding in PHP: Developing Defensible Applications : Developer 545

    This course targets PHP programmers interested in learning more about how to code in PHP securely. It does require a good understanding of PHP and some experience writing PHP code. The code targets both beginning and advanced PHP programmers, but it is not appropriate for those who have not written any PHP code yet. We will not cover how to... >>more

  • Essential Secure Coding in Java/JEE : Developer 530

    Please note that this two-day course is a subset of the material covered in the four-day DEV541. This two-day version is intended to cover the essential Java/JEE topics that are relevant to a large number of web application developers and therefore does not cover all the material that may be present on the GSSP-Java certification exam. DEV541:... >>more

  • Introduction to the Microsoft Security Development Lifecycle : Developer 320

    In this introductory class, you will learn the history of the SDL at Microsoft and its goals and benefits that can be applied to your organization. Each of its seven phases will be introduced to you in detail. You will also learn why it is so critical for any development organization to embed security and privacy into software development and... >>more

  • (ISC)2® Certified Secure Software Lifecycle Professional (CSSLP®) CBK® Education Program : Special

    It's no secret that security is not being addressed from a holistic perspective throughout the software lifecycle. Some 80% of all security breaches are application related equating to more than 226 million records being disclosed and fines reaching astronomical amounts. Together we have a solution that establishes industry standards and... >>more

Management

Coming Soon

Compliance

Coming Soon

Audit

Coming Soon