Join a select group of security consultants and developers to learn how to perform source code security reviews in a fast, efficient and comprehensive way.
Ideal for: for security consultants and senior developers who are responsible for performing penetration testing with source code access (i.e. white box / grey box testing).
Three different languages will be covered (C/C++, .NET and Java) using open source applications as case studies; covering vulnerabilities like: SQL Injection, Buffer Overflows, XSS, XSRF, Authorization issues, Authentication flaws; poor use of Encryption, Business Logic abuse, Privilege execution, Denial of Service, Trojan code and other similar techniques.
When:
Tuesday, June 12th
Wednesday, June 13th
Where:
Thistle Marble Arch
Bryanston Street, Marble Arch
Central London, W1H 7EH
Oxford Suite
Included:
Two days source code security training with Dinis Cruz, leading security consultant
Five day unlimited use license of the Ounce 4 product to configure, scan and triage in a commercial engagement within 45 days of the class
One night accommodation
Two Breakfasts, Two lunches, One Dinner, coffee/tea servings
Cost: £2500
Requirements: Laptop with VMWare player and 2GB of memory
Commercial security or development experience
Technorati Tags: Dinis Cruz, source code, code, security, SQL Injection, Buffer Overflows, XSS, XSRF, Authorization, Authentication, Encryption, Business Logic, Privilege execution, Denial of Service, Trojan code