Web Security Training

Cyber Security Training Seminars
Web Security
Training
Call Us Today: +1-972-665-9786
https://www.tonex.com/training-courses/web-security/
TAKE THIS COURSE
Since 1993, Tonex has specialized in providing industry-leading training, courses, seminars,
workshops, and consulting services. Fortune 500 companies certified.

Since 1993, Tonex has specialized in providing industry-leading training,
courses, seminars, workshops, and consulting services.
Why Tonex ?
--Presenting highly customized learning solutions is what we do. For over 30
years TONEX has worked with organizations in improving their
understanding and capabilities in topics often with new development,
design, optimization, regulations and compliances that, frankly, can be
difficult to comprehend.
--Ratings tabulated from student feedback post-course evaluations show an
amazing 98 percent satisfaction score.
--Reasonably priced classes taught by the best trainers is the reason all kinds
of organizations from Fortune 500 companies to government’s most
important agencies return for updates in courses and hands-on workshops

TAKE THIS COURSE
Audience:
Course designed for:
• IT professionals in the area of information security and web security
• Executives and managers of cyber security and web security area
• Information technology professionals, web engineers, security analysts
• Security operation personnel, network administrators, system integrators
• Security traders to understand the software security of web system
• Investors and contractors who plan to make investments
• Technicians, operators, and maintenance personnel
• Managers, accountants, and executives of cyber security industry.
Price: $1,699.00 Length: 2 Days
Web Security Training

The web security training teaches you the
advanced web browsing vulnerabilities from
system penetration to identity theft as well as
protection solutions to ensure the web security.
TONEX as a leader in security industry for more
than 15 years is now announcing the web security
training which helps you to secure the
communication between a client and server as
well as integrity of data in web.
By taking the web security training by TONEX, you
will learn about main features of HTTP protocol,
header fields in HTTP, URL encoding and HTTP
security issues as the most basic knowledge
needed for web security.
TAKE THIS COURSE

The web security training shows you the propelled web perusing vulnerabilities from framework
entrance to fraud and additionally assurance answers for guarantee the web security. TONEX as a
pioneer in security industry for over 15 years is currently reporting the web security training which
encourages you to anchor the correspondence between a customer and server and in addition
trustworthiness of information in web. TONEX has served the business and the scholarly
community with top notch gatherings, seminars, workshops, and solely planned courses in
framework designing region and is satisfied to illuminate proficient colleagues about the ongoing
exhaustive training on web security.
This course covers assortment of points in web security and PC arrange security territories, for
example, HTTP convention, cryptography in web, SSL convention, various types of web assaults,
program security issues, treats, web bugs and spywares. Besides, you will find out about the
windows framework security, Linux/UNIX framework security, normal web servers, for example,
Apache and IIS, get to control in web, web firewalls, PC organize and a ton of hands on
understanding and trainings for web security applications.
By taking the web security training by TONEX, you will find out about principle highlights of HTTP
convention, header fields in HTTP, URL encoding and HTTP security issues as the most essential
information required for web security.
TAKE THIS COURSE

Find out about the encryption and decoding in web, mystery codes, open/private key cryptography,
computerized marks, and hash calculations in web security training.
Take in the standards of secure attachment layer (SSL), SSL engineering, and diverse conventions
offered by SSL, for example, handshake convention, record convention, ready convention and
change figure spec convention.
By taking this course you will likewise be acquainted with the most widely recognized kinds of web
assaults, for example, SQL infusion, HTML codes, and web page capturing. In addition, you will be
prepared to distinguish the program assaults and get ready for the best possible program security
standards, for example, URL sifting, treat blocking or endpoint insurance strategies.
On the off chance that you are an IT proficient who spend significant time in web security, you will
profit the introductions, illustrations, case studies, discourses, and individual exercises upon the
fruition of the web security training and will set yourself up for your profession.
TAKE THIS COURSE

Find out about the security of windows frameworks, get to tokens, client SID, get to checking and
windows consents. Additionally, you will be acquainted with the UNIX/Linux server security, diverse
kinds of assaults to the servers, for example, DNS enhancements, heart-drain powerlessness or
client account trading off.
You will likewise find out about web servers, for example, Apache and IIS, different access controls
in web with their control dangers and classifications, bundle separating, web firewall, security RSA,
TCP, remote multi-jump systems, PC arrange layers and directing circles.
At long last, the web security training will present an arrangement of labs, workshops and gathering
exercises of certifiable case studies with a specific end goal to set you up to handle all the related
web security challenges.
TAKE THIS COURSE

TONEX TRAINING
Web Security
Training
2 Days Course
Call Us Today:
+1-972-665-9786
TAKE THIS COURSE
TAKE THIS COURSE

Audience
The web security training is a 2-day course designed for:
• IT professionals in the area of information security and web security
• Executives and managers of cyber security and web security area
• Information technology professionals, web engineers, security analysts, policy analysts
• Security operation personnel, network administrators, system integrators and security consultants
• Security traders to understand the software security of web system, mobile devices, or other devices.
• Investors and contractors who plan to make investments in system engineering industry.
• Technicians, operators, and maintenance personnel who are or will be working on cyber security
projects
• Managers, accountants, and executives of cyber security industry.
TAKE THIS COURSE

Training Objectives
Upon completion of the web security training course, the attendees are able to:
• Understand the information security related to World Wide Web.
• Understand the security issues of servers related to web application.
• Explain the main concepts of web attacks and web vulnerabilities such as malicious emails, web
scripts, cookies, web bugs and spywares.
• Explore deeply into security issues and develop test potential solutions
• Investigate secure communication between client and server by encrypting data streams such
as SSL
• Explore the browser vulnerabilities and protection of the system against web vulnerabilities
TAKE THIS COURSE

Training Outline
The web security training course consists of the following lessons, which can be revised and
tailored to the client’s need:
• Overview of Information Security
• HTTP Protocol
• Basic Cryptography
• The SSL Protocol
• Web Attacks
• Browser Security
• Cookies, Web Bugs and Spyware
• Windows Systems Security
• UNIX/Linux Server Security
• Apache and IIS Web Servers
• Various Access Controls
• Packet Filtering and Web Firewall
• Introduction to Computer Networks
• Hands On, Workshops and, Group Activities
• Sample Workshops and Labs for Web Security Training
TAKE THIS COURSE

Overview of Information Security:
• History of Information Security
• Multiplexed Information and Computing Service (MULTICS)
• Definition of Security
• Key Information Security concepts
• Critical Characteristics of Information
• Standards for Information Systems Security
• Components of an Information System
• Balancing Information Security and Access
• Approaches to Information Security Implementation
• The System Development Life Cycle
• Security Professionals and Organization
• Communities of Interest
• Information Security; Art of Science?
TAKE THIS COURSE

HTTP Protocol:
• Overview of Hypertext Transfer Protocol (HTTP)
• Basic Features of HTTP
• Architecture of HTTP
• HTTP Version
• Parameters of HTTP
• Messages in HTTP
• Requests in HTTP
• Responses in HTTP
• HTTP Methods
• HTTP Status Codes
• HTTP Headers Field
• HTTP Cashing
• URL Encoding
• HTTP Security
TAKE THIS COURSE

Basic Cryptography:
• Cryptography Introduction
• Encryption
• Cipher Text
• Decryption
• Plaintext
• Computational Difficulty in Cryptography
• Secret Codes
• Breaking an Encryption Scheme
• Types of Cryptographic Functions
• Secret Key Cryptography
• Public Key Cryptography
• Digital Signatures
• Digital Certificates
• Hash Algorithms
TAKE THIS COURSE

The SSL Protocol:
• Secure Socket Layer (SSL) Definition
• SSL Architecture
• SSL Handshake Protocol
• SSL Record Protocol
• SSL Alert Protocol
• SSL Change Cipher Spec Protocol
• SSL Sessions and Connections
TAKE THIS COURSE

Web Attacks:
• Infected Web
• Complexity of Modern Web
• SQL Injection Attacks
• Malicious Advertisement
• Cross-site Scripting (XSS)
• Phishing
• Malicious HTML Code
• Software Vulnerabilities
• Web Attack Toolkits
• Obfuscation of the Actual Attacks
• Hijacking Web Pages
• Fake Codec
• Malicious Peer-to-peer Files
• Fake Scanner Web Page
• Blog Spam
TAKE THIS COURSE

Browser Security:
• How does a Web Browser Work?
• Why Browser Security?
• Types of Browser Threats
• Buffer Overflow
• Root Exploit
• Phishing
• Cookies
• Document Object Model
• Cross-Site Scripting
• Cache History Attacks
• Security versus Usability
• Features of a Secure Browser
• Security Implementations and Browsers
• Blocking Third Party Cookies
• Same-Origin Policy
• Security Compartmentalization
• Update control
TAKE THIS COURSE
• Plug-in and Extension Control
• Prevention of Malicious Scripts
• Content Inspection
• URL Filtering
• Endpoint Protection
• Web Server Protection

Cookies, Web Bugs and Spyware:
• Overview of Spyware
• Online Attackers
• Spying by a Trusted Insider
• Data Gathered by Spyware
• Operation of Spyware
• Impact of Spyware
• Common Types of Spyware
• Browser Session Hijacking
• Browser Helper Objects
• Cookies and Web Bugs
• Autonomous Spyware
• Spyware Security Tips
• Introduction to Cookies
• ASCI Strings
• Session Cookies
• Persistent Cookies
• Version 0 Cookies
TAKE THIS COURSE
• Version 1 Cookies
• Cookie Privacy Risks
• Security Risks Related to Cookies
• Session Hijacking
• Definition of Web Bugs
• Effect of Web Bug on servers
• Where to Find Web Bugs?
• Email Web Bugs
• Email Wiretapping

Windows Systems Security:
• Introduction to Windows Security
• Windows Protection System
• Protection State
• Enforcement Mechanism
• Transitions
• Windows Subjects
• Access Tokens
• User SID
• Windows Services-Domains
• User Authentication
• Windows Objects
• Active Directory
• Windows Permissions
• Access Checking
• Access Control Entries
• Access Checking with ACE
• Windows Vs Linux
TAKE THIS COURSE

UNIX/Linux Server Security:
• Operating System (OS) Management
• Common Vulnerabilities
• Compromising User Accounts
• DNS Amplification Attacks
• NTP Reflection Attacks
• Heartbleed Vulnerability
• Secure Remote Access Protocol (SSH vs Telnet)
• Secure File Transfer Protocols (SCP/SFTP vs FTP)
• Secure Protocols for Accessing Web Servers (HTTP vs HTTPS)
• Remote File Systems
• Iptables
• TCP Wrapper
• SELinux
• UMAK
• SUID and SGID
• Cron
• Syslog
• Patches
TAKE THIS COURSE

Apache and IIS Web Servers:
• Introduction to Web Servers
• Uniform Resource Identifier (URI)
• HTTPS Request Types
• System Architecture
• Client-Slide Scripting Versus Server-Slide Scripting
• Accessing Web Servers
• Microsoft Internet Information Services (IIS)
• Apache Web Server
• Requesting Documents
• XHTML
• NET
• Perl
• PHP
• Python
• Web Resources
TAKE THIS COURSE

Various Access Controls:
• Definitions and Key Concepts
• Access Control Categories and Types
• Access Control Threats
• Access to the System
• Access to Data
• Intrusion Prevention and Detection System
• Access Control Assurance
Packet Filtering and Web Firewall:
• Basic Packet Filtering
• Stateful Packet Filtering
• Matching Algorithms
• Common Configuration Errors
• Direction Based Filtering
• Advanced Firewall Management
• Firewall Analysis
TAKE THIS COURSE

Introduction to Computer Networks:
• Internet, HTTP, DNS, P2P
• Socket, Ports
• Congestion Control, Flow Control, TCP
• Routing, Basic Graphs, IP
• DSL Versus Cable, Aloha, CSMA, TDMA, Token, 802.11
• Security RSA
• Cellular Networks, Mobile Networks, Satellite Networks
• Wireless Multi-hop Networks
• Internetwork
• Layers
• Data Rate, Throughput and Bandwidth
• Packets
• Datagram Forwarding
• Topology
• Routing Loops
• LAN and Ethernet
• DNS
• IP, Firewall, IETF and OSI and Epilog
TAKE THIS COURSE

Hands On, Workshops and, Group Activities:
• Labs
• Workshops
• Group Activities
Sample Workshops and Labs for Web Security Training:
• Tutorial and Hands-on for different possible web attacks
• IP Hijacking Case Study
• Eavesdropping HTTP passwords Case Study
• Command Line Injection Attack Experiment
• Using SQL Injection Vulnerabilities to Gain Access to Website
• Using the Stolen Cookie for Identity Attack
• ModSecurity Application to Detect Threats
TAKE THIS COURSE

TAKE THIS COURSE
TONEX TRAINING
Web Security
Training
2 Days Course
Call Us Today:
+1-972-665-9786
TAKE THIS COURSE

Cybersecurity
Training Seminars
Cybersecurity used to be thought of as a specialized, niche occupation. But with the advance of
cybercrimes over the past few years, just about everyone with access to a laptop, desktop or mobile
device has had to do something to protect their electronic data.
Cybersecurity Foundation
Iot Security
Risk Management Framework Training
Wireless Security Training
https://www.tonex.com/cybersecurity-training-seminars/

Contact Tonex Training Expert
Dallas, TX:
1400 Preston Rd., Suite 400
Plano, Texas 75093
Tel: +1-972-665-9786
Washington, DC:
1025 Connecticut Ave, NW Suite 1000
Washington, DC 20036
Tel: +1-202-327-5404
International: +1-214-762-6673
Fax: +1-972-692-7492
Visit Tonex website
https://www.tonex.com/

TAKE THIS COURSE
https://www.tonex.com/training-courses/electric-grid-cyberseucrity-master-certification/
Electric Grid Cyber Security
Master Certification

Web Security Training

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Web Security Training

Similar to Web Security Training (20)

More from Tonex

More from Tonex (20)

Recently uploaded

Recently uploaded (20)

Web Security Training