Web Security Training

1
Cyber Security Training Seminars Web Security
Training
Call Us Today 1-972-665-9786 https//www.tonex.c
om/training-courses/web-security/
TAKE THIS COURSE
Since 1993, Tonex has specialized in providing
industry-leading training, courses, seminars,
workshops, and consulting services. Fortune 500
companies certified.
2
(No Transcript)
3

• Audience
•  Course designed for
• IT professionals in the area of information
  security and web security
• Executives and managers of cyber security and web
  security area
• Information technology professionals, web
  engineers, security analysts
• Security operation personnel, network
  administrators, system integrators
• Security traders to understand the software
  security of web system
• Investors and contractors who plan to make
  investments
• Technicians, operators, and maintenance personnel
• Managers, accountants, and executives of cyber
  security industry.
• Price 1,699.00 Length 2 Days

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
4
The web security training teaches you the
advanced web browsing vulnerabilities from system
penetration to identity theft as well as
protection solutions to ensure the web security.
TONEX as a leader in security industry for more
than 15 years is now announcing the web security
training which helps you to secure the
communication between a client and server as well
as integrity of data in web. By taking the web
security training by TONEX, you will learn about
main features of HTTP protocol, header fields in
HTTP, URL encoding and HTTP security issues as
the most basic knowledge needed for web
security.
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
5
The web security training shows you the propelled
web perusing vulnerabilities from framework
entrance to fraud and additionally assurance
answers for guarantee the web security. TONEX as
a pioneer in security industry for over 15 years
is currently reporting the web security training
which encourages you to anchor the correspondence
between a customer and server and in addition
trustworthiness of information in web. TONEX has
served the business and the scholarly community
with top notch gatherings, seminars, workshops,
and solely planned courses in framework designing
region and is satisfied to illuminate proficient
colleagues about the ongoing exhaustive training
on web security. This course covers assortment
of points in web security and PC arrange security
territories, for example, HTTP convention,
cryptography in web, SSL convention, various
types of web assaults, program security issues,
treats, web bugs and spywares. Besides, you will
find out about the windows framework security,
Linux/UNIX framework security, normal web
servers, for example, Apache and IIS, get to
control in web, web firewalls, PC organize and a
ton of hands on understanding and trainings for
web security applications. By taking the web
security training by TONEX, you will find out
about principle highlights of HTTP convention,
header fields in HTTP, URL encoding and HTTP
security issues as the most essential information
required for web security.
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
6
Find out about the encryption and decoding in
web, mystery codes, open/private key
cryptography, computerized marks, and hash
calculations in web security training. Take in
the standards of secure attachment layer (SSL),
SSL engineering, and diverse conventions offered
by SSL, for example, handshake convention, record
convention, ready convention and change figure
spec convention. By taking this course you will
likewise be acquainted with the most widely
recognized kinds of web assaults, for example,
SQL infusion, HTML codes, and web page capturing.
In addition, you will be prepared to distinguish
the program assaults and get ready for the best
possible program security standards, for example,
URL sifting, treat blocking or endpoint insurance
strategies. On the off chance that you are an
IT proficient who spend significant time in web
security, you will profit the introductions,
illustrations, case studies, discourses, and
individual exercises upon the fruition of the web
security training and will set yourself up for
your profession.
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
7
Find out about the security of windows
frameworks, get to tokens, client SID, get to
checking and windows consents. Additionally, you
will be acquainted with the UNIX/Linux server
security, diverse kinds of assaults to the
servers, for example, DNS enhancements,
heart-drain powerlessness or client account
trading off. You will likewise find out about
web servers, for example, Apache and IIS,
different access controls in web with their
control dangers and classifications, bundle
separating, web firewall, security RSA, TCP,
remote multi-jump systems, PC arrange layers and
directing circles. At long last, the web
security training will present an arrangement of
labs, workshops and gathering exercises of
certifiable case studies with a specific end goal
to set you up to handle all the related web
security challenges.
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
8
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
9

• Audience
• The web security training is a 2-day course
  designed for
• IT professionals in the area of information
  security and web security
• Executives and managers of cyber security and web
  security area
• Information technology professionals, web
  engineers, security analysts, policy analysts
• Security operation personnel, network
  administrators, system integrators and security
  consultants
• Security traders to understand the software
  security of web system, mobile devices, or other
  devices.
• Investors and contractors who plan to make
  investments in system engineering industry.
• Technicians, operators, and maintenance personnel
  who are or will be working on cyber security
  projects
• Managers, accountants, and executives of cyber
  security industry.

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
10

• Training Objectives
• Upon completion of the web security training
  course, the attendees are able to
• Understand the information security related to
  World Wide Web.
• Understand the security issues of servers related
  to web application.
• Explain the main concepts of web attacks and web
  vulnerabilities such as malicious emails, web
  scripts, cookies, web bugs and spywares.
• Explore deeply into security issues and develop
  test potential solutions
• Investigate secure communication between client
  and server by encrypting data streams such as SSL
• Explore the browser vulnerabilities and
  protection of the system against web
  vulnerabilities

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
11

• Training Outline
• The web security training course consists of the
  following lessons, which can be revised and
  tailored to the clients need
• Overview of Information Security
• HTTP Protocol
• Basic Cryptography
• The SSL Protocol
• Web Attacks
•  Browser Security
•  Cookies, Web Bugs and Spyware
• Windows Systems Security
•  UNIX/Linux Server Security
• Apache and IIS Web Servers
• Various Access Controls
•  Packet Filtering and Web Firewall
•  Introduction to Computer Networks
• Hands On, Workshops and, Group Activities
•  Sample Workshops and Labs for Web Security
  Training

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
12
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
13

• Overview of Information Security
• History of Information Security
• Multiplexed Information and Computing Service
  (MULTICS)
• Definition of Security
• Key Information Security concepts
• Critical Characteristics of Information
• Standards for Information Systems Security
• Components of an Information System
• Balancing Information Security and Access
• Approaches to Information Security Implementation
• The System Development Life Cycle
• Security Professionals and Organization
• Communities of Interest
• Information Security Art of Science?

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
14

• HTTP Protocol
• Overview of Hypertext Transfer Protocol (HTTP)
• Basic Features of HTTP
• Architecture of HTTP
• HTTP Version
• Parameters of HTTP
• Messages in HTTP
• Requests in HTTP
• Responses in HTTP
• HTTP Methods
• HTTP Status Codes
• HTTP Headers Field
• HTTP Cashing
• URL Encoding
• HTTP Security

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
15
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
16

•  Basic Cryptography
• Cryptography Introduction
• Encryption
• Cipher Text
• Decryption
• Plaintext
• Computational Difficulty in Cryptography
• Secret Codes
• Breaking an Encryption Scheme
• Types of Cryptographic Functions
• Secret Key Cryptography
• Public Key Cryptography
• Digital Signatures
• Digital Certificates
• Hash Algorithms

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
17

• The SSL Protocol
• Secure Socket Layer (SSL) Definition
• SSL Architecture
• SSL Handshake Protocol
• SSL Record Protocol
• SSL Alert Protocol
• SSL Change Cipher Spec Protocol
• SSL Sessions and Connections

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
18
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
19

• Web Attacks
• Infected Web
• Complexity of Modern Web
• SQL Injection Attacks
• Malicious Advertisement
• Cross-site Scripting (XSS)
• Phishing
• Malicious HTML Code
• Software Vulnerabilities
• Web Attack Toolkits
• Obfuscation of the Actual Attacks
• Hijacking Web Pages
• Fake Codec
• Malicious Peer-to-peer Files
• Fake Scanner Web Page
• Blog Spam

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
20

• Browser Security
• How does a Web Browser Work?
• Why Browser Security?
• Types of Browser Threats
• Buffer Overflow
• Root Exploit
• Phishing
• Cookies
• Document Object Model
• Cross-Site Scripting
• Cache History Attacks
• Security versus Usability
• Features of a Secure Browser
• Security Implementations and Browsers
• Blocking Third Party Cookies
• Same-Origin Policy
• Security Compartmentalization
• Update control

• Plug-in and Extension Control
• Prevention of Malicious Scripts
• Content Inspection
• URL Filtering
• Endpoint Protection
• Web Server Protection

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
21
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
22

• Cookies, Web Bugs and Spyware
• Overview of Spyware
• Online Attackers
• Spying by a Trusted Insider
• Data Gathered by Spyware
• Operation of Spyware
• Impact of Spyware
• Common Types of Spyware
• Browser Session Hijacking
• Browser Helper Objects
• Cookies and Web Bugs
• Autonomous Spyware
• Spyware Security Tips
• Introduction to Cookies
• ASCI Strings
• Session Cookies
• Persistent Cookies
• Version 0 Cookies

• Version 1 Cookies
• Cookie Privacy Risks
• Security Risks Related to Cookies
• Session Hijacking
• Definition of Web Bugs
• Effect of Web Bug on servers
• Where to Find Web Bugs?
• Email Web Bugs
• Email Wiretapping

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
23

• Windows Systems Security
• Introduction to Windows Security
• Windows Protection System
• Protection State
• Enforcement Mechanism
• Transitions
• Windows Subjects
• Access Tokens
• User SID
• Windows Services-Domains
• User Authentication
• Windows Objects
• Active Directory
• Windows Permissions
• Access Checking
• Access Control Entries
• Access Checking with ACE
• Windows Vs Linux

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
24
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
25

• UNIX/Linux Server Security
• Operating System (OS) Management
• Common Vulnerabilities
• Compromising User Accounts
• DNS Amplification Attacks
• NTP Reflection Attacks
• Heartbleed Vulnerability
• Secure Remote Access Protocol (SSH vs Telnet)
• Secure File Transfer Protocols (SCP/SFTP vs FTP)
• Secure Protocols for Accessing Web Servers (HTTP
  vs HTTPS)
• Remote File Systems
• Iptables
• TCP Wrapper
• SELinux
• UMAK
• SUID and SGID
• Cron
• Syslog

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
26

• Apache and IIS Web Servers
• Introduction to Web Servers
• Uniform Resource Identifier (URI)
• HTTPS Request Types
• System Architecture
• Client-Slide Scripting Versus Server-Slide
  Scripting
• Accessing Web Servers
• Microsoft Internet Information Services (IIS)
• Apache Web Server
• Requesting Documents
• XHTML
• NET
• Perl
• PHP
• Python
• Web Resources

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
27
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
28

• Various Access Controls
• Definitions and Key Concepts
• Access Control Categories and Types
• Access Control Threats
• Access to the System
• Access to Data
• Intrusion Prevention and Detection System
• Access Control Assurance
•  Packet Filtering and Web Firewall
• Basic Packet Filtering
• Stateful Packet Filtering
• Matching Algorithms
• Common Configuration Errors
• Direction Based Filtering
• Advanced Firewall Management
• Firewall Analysis

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
29

• Introduction to Computer Networks
• Internet, HTTP, DNS, P2P
• Socket, Ports
• Congestion Control, Flow Control, TCP
• Routing, Basic Graphs, IP
• DSL Versus Cable, Aloha, CSMA, TDMA, Token,
  802.11
• Security RSA
• Cellular Networks, Mobile Networks, Satellite
  Networks
• Wireless Multi-hop Networks
• Internetwork
• Layers
• Data Rate, Throughput and Bandwidth
• Packets
• Datagram Forwarding
• Topology
• Routing Loops
• LAN and Ethernet
• DNS

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
30
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
31

• Hands On, Workshops and, Group Activities
• Labs
• Workshops
• Group Activities
•  
• Sample Workshops and Labs for Web Security
  Training
• Tutorial and Hands-on for different possible web
  attacks
• IP Hijacking Case Study
• Eavesdropping HTTP passwords Case Study
• Command Line Injection Attack Experiment
• Using SQL Injection Vulnerabilities to Gain
  Access to Website
• Using the Stolen Cookie for Identity Attack
• ModSecurity Application to Detect Threats

Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
32
TONEX TRAINING Web Security Training 2 Days
Course Call Us Today 1-972-665-9786
TAKE THIS COURSE
Web Security Training https//www.tonex.com/traini
ng-courses/web-security/
TAKE THIS COURSE
33
Cybersecurity Training Seminars
Cybersecurity used to be thought of as a
specialized, niche occupation. But with the
advance of cybercrimes over the past few years,
just about everyone with access to a laptop,
desktop or mobile device has had to do something
to protect their electronic data. Cybersecurity
Foundation Iot Security Risk Management Framework
Training Wireless Security Training https//www.t
onex.com/cybersecurity-training-seminars/
34
(No Transcript)
35
Web Security Training
https//www.tonex.com/training-courses/web-securit
y/
TAKE THIS COURSE
36
(No Transcript)