Application Security Foundations: Level 1 by Tanya Janca
Buy for $499
Buy for 2 payments of $250

Application Security Foundations: Level 1


This introductory course will answer all of your burning questions and define all of the technical terms right at the start. Then we will set goals for your AppSec program at work as an exercise. After this we dive in deep into every type of application security activity and tool on the market, while sprinkling you with quizzes and exercises. As a final project we make an AppSec program action plan for you to bring back to work with you.
Buy for $499
Buy for 2 payments of $250

Included in your purchase!

Online Course

14 online modules!
  1. Course Introduction
  2. Definitions and Burning Questions
  3. Application Security Goals
  4. Choosing Goals
  5. AppSec Activities - The Basics
  6. AppSec Activities - Intermediate
  7. AppSec Activities - DevOps Flavoured
  8. AppSec Activities - Advanced
  9. AppSec Tooling - The Basics
  10. AppSec Tooling - Intermediate
  11. AppSec Tooling - Modern Twist
  12. AppSec Adjacent Tooling
  13. Updating Your Goals
  14. Conclusion

Your Textbook

The textbook for this program is Alice and Bob Learn Application Security. You can have a physical or digital copy, let us know your preference when you've made your purchase.

Credit towards Certification of Completion

When you have completed all three of the Application Security Foundations Program, you are eligible for a certificate of completion for the program!

What's included?

Video Icon 86 videos File Icon 6 files Text Icon 2 text files

Contents

Course Introduction
Course Introduction
3 mins
Get access
Prerequisites
Get access
Meet Your Trainer
4 mins
Get access
History Lesson
5 mins
Get access
Definitions and Burning Questions
What is AppSec, what is DevSecOps, and why do they matter?
Preview
What is 'Cyber'?
2 mins
Preview
What is Application Security?
2 mins
Preview
Computer Sciences vs Application Security
3 mins
Preview
What is DevOps?
5 mins
Preview
What is a Tech Stack?
4 mins
Preview
Can you jump right into an Application Security position?
2 mins
Preview
Is application security just coding?
4 mins
Preview
Biggest Application Security Challenges
3 mins
Preview
Skillsets needed for Application Security
4 mins
Preview
How can I get into AppSec?
5 mins
Preview
Definitions and Burning Questions: Quiz
Get access
Application Security Goals
What are program goals?
3 mins
Get access
Goal: Inventory
2 mins
Get access
Goal: Finding Vulnerabilities
3 mins
Get access
Goal: The Knowledge to Fix What You Have Found
3 mins
Get access
Goal: Giving Developers Security Tools
4 mins
Get access
Goal: Education and Reference Materials
3 mins
Get access
Goal: Secure SDLC
4 mins
Get access
Goal: Incident Response
3 mins
Get access
Goal: Continuous Improvement
4 mins
Get access
Application Security Goals: Quiz
Get access
Choosing Goals
Choosing your program goals.
5 mins
Get access
Setting Goals.pdf
554 KB
Get access
AppSec Activities - The Basics
Interactive Exercise!
2 mins
Get access
Interactive AppSec Activities Assigment
528 KB
Get access
Tactics versus Strategy
2 mins
Get access
VA Scans and Security Assessments
4 mins
Get access
Threat Modelling
4 mins
Get access
Secure Code Review and SAST
5 mins
Get access
Software Composition Analysis (SCA)
4 mins
Get access
Penetration Testing
5 mins
Get access
AppSec Activities - The Basics: Quiz
Get access
AppSec Activities - Intermediate
Developer Education and Advocacy Programs
2 mins
Get access
Coordinated Disclosure
6 mins
Get access
Policies, Guidelines and Standards
2 mins
Get access
Giving Developers Security Tools
3 mins
Get access
Secure Coding Library/ Templates
3 mins
Get access
Security Reference Materials
2 mins
Get access
‘The Partnership Model’
3 mins
Get access
Metrics and Measurement
2 mins
Get access
Security Regression Testing (with unit tests)
3 mins
Get access
Capture The Flag and Gamification
3 mins
Get access
Reviewing New Tech
2 mins
Get access
IDE Tools
2 mins
Get access
Adding a shield in front of your app (WAF/RASP)
3 mins
Get access
AppSec Activities - Intermediate: Quiz
Get access
AppSec Activities - DevOps Flavoured
Adding Security Tooling to a Pipeline
3 mins
Get access
Asynchronous Pipeline
3 mins
Get access
Chaos Engineering and Red Teaming
3 mins
Get access
Security Sprints
3 mins
Get access
Turning PenTest results into Unit Tests
2 mins
Get access
Asking directly for feedback from Dev & Ops
2 mins
Get access
AppSec Activities - DevOps Flavoured: Quiz
Get access
AppSec Activities - Advanced
Team-Specific Customized Security Training
3 mins
Get access
Creating Custom Tools
4 mins
Get access
Bug Bounties
5 mins
Get access
Red Teaming
4 mins
Get access
Targeting an Entire Bug Class
4 mins
Get access
Security Exercises and Simulations
5 mins
Get access
Did you complete the interactive assignment?
2 mins
Get access
Interactive AppSec Activities Assigment.pdf
528 KB
Get access
AppSec Activities - Advanced: Quiz
Get access
AppSec Tooling - The Basics
Interactive Tooling Assignment
2 mins
Get access
Interactive AppSec Tooling Assigment
382 KB
Get access
Introduction to AppSec Tooling
5 mins
Get access
Static Application Security Testing (SAST)
5 mins
Get access
Dynamic Application Security Testing (DAST)
1 min
Get access
Software Composition Analysis Tools
5 mins
Get access
Web Proxy
4 mins
Get access
Fuzzing
4 mins
Get access
VM & Container VA scanners
5 mins
Get access
AppSec Tooling - The Basics: Quiz
Get access
AppSec Tooling - Intermediate
API Tools that Speak Directly to the API
6 mins
Get access
Web Application Firewall (WAF)
6 mins
Get access
Vulnerability Management
4 mins
Get access
IDE Tools and Hooks
4 mins
Get access
Tooling Made for Pipelines
5 mins
Get access
Unit Test Creativity
4 mins
Get access
AppSec Tooling - Intermediate: Quiz
Get access
AppSec Tooling - Modern Twist
Interactive Application Security Testing (IAST)
5 mins
Get access
SIEM + App integration
3 mins
Get access
RASP Runtime App Security Protection
5 mins
Get access
Service Mesh
3 mins
Get access
API Gateway
4 mins
Get access
Application and Web Asset Inventory
4 mins
Get access
AppSec Tooling - Modern Twist: Quiz
Get access
AppSec Adjacent Tooling
Integrated Bug Tracker for Vulnerabilities
5 mins
Get access
cloud native.mov
3 mins
Get access
Playbooks = Workflows + Serverless Apps
4 mins
Get access
VM/Container VA Scanners - Again
4 mins
Get access
File Integrity Monitoring
3 mins
Get access
Application Control Tooling
3 mins
Get access
AppSec Tooling Exercise - What to do.
2 mins
Get access
Interactive AppSec Tooling Assigment.pdf
382 KB
Get access
AppSec Adjacent Tooling: Quiz
Get access
Updating Your Goals
Final Project
3 mins
Get access
Final Project - Update Your Goals.pdf
762 KB
Get access
Conclusion
Conclusion
3 mins
Get access
Thank you for choosing We Hack Purple.
2 mins
Get access