Educause Security Discussion mailing list archives

Re: SANS Sec542 Web Pen Testing Course at Brown University

From: "Fletcher, Robert" <Robert_Fletcher () BROWN EDU>
Date: Tue, 15 Sep 2009 19:16:25 -0400


Regretfully, it became necessary last week to reschedule this class. The
class is now scheduled for January 11 - 16, 2010. I apologize for any
inconvenience this may cause.

The revised web link is:
http://www.sans.org/providence-2010-cs/description.php?tid=3537


Bob Fletcher
IT Security Engineer
CIS Information Security Group
Brown University
(401) 863-7290

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Fletcher, Robert
Sent: Sunday, August 30, 2009 5:55 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] SANS Sec542 Web Pen Testing Course at Brown University


Monday, October 5, 2009 through Saturday, October 10, 2009, Brown University
will be hosting SANS Security 542 "Web App Penetration Testing and Ethical
Hacking."

About the class:

Web applications are a major point of vulnerability in organizations today.
Web app holes have resulted in the theft of millions of credit cards, major
financial and reputational damage for hundreds of enterprises, and even the
compromise of thousands of browsing machines that visited Web sites altered
by attackers. To learn how to prevent such exploits, students in this
intermediate to advanced level class, will:

* Learn the art of exploiting Web applications so they can find flaws in
their enterprise's Web apps before the bad guys do. Through detailed,
hands-on exercises students are taught the four-step process for Web
application penetration testing.

* Inject SQL into back-end databases, learning how attackers exfiltrate
sensitive data.

* Utilize Cross-Site Scripting attacks to dominate a target infrastructure
in our unique hands-on laboratory environment.

* Explore various other Web app vulnerabilities in depth with tried-and-true
techniques for finding them using a structured testing regimen.

* In short, learn the tools and methods of the attacker, so that they can
become powerful defenders.

Recommended for:

General security practitioners, as well as Web site designers, architects,
and developers, who'll benefit from learning the practical art of Web
application penetration testing.


ADDITIONAL INFORMATION and REGISTRATION:

http://www.sans.org/providence09_cs/description.php?tid=3537



Bob Fletcher
IT Security Engineer
CIS Information Security Group
Brown University

Attachment: smime.p7s
Description:

Current thread:

SANS Sec542 Web Pen Testing Course at Brown University Fletcher, Robert (Aug 30)
- <Possible follow-ups>
- Re: SANS Sec542 Web Pen Testing Course at Brown University Fletcher, Robert (Sep 15)