Web application security is the process of protecting websites and online services against different security threats that exploit vulnerabilities in an application’s code. Common targets for web application attacks are content management systems (e.g., WordPress), database administration tools (e.g., phpMyAdmin) and SaaS applications.
The majority of web application attacks occur through cross-site scripting (XSS) and SQL injection attacks which typically result from flawed coding, and failure to sanitize input to and output from the web application. These are ranked in the 2009 SANS/ CWE, Top 25 Most Dangerous Programming Errors.
WHAT WILL YOU LEARN?
EXAM DURATION: 24 HOURS (8 HOURS * 3 DAYS)