Wait a minute..

Securing Web Server Based on OWASP Top 10

This Workshop is designed for you who is involved in securing your corporate's assets and responsible for the seamless system inside as well, and suitable for cybersecurity engineer and practitioner.

Live Virtual Classroom
Beginner 0(0 Ratings)
Created by Hacktrace Indonesia
What will I learn?
  • This
  • You'll also learn how a hack and data leak can occur due to a simple configuration error.
  • Furthermore, techniques and tips in looking at logs from the web server to detect any attacks will also be studied.
Live virtual classroom schedule
Schedule not yet available
Live online features
  • Securing Web Server Based on OWASP Top 10
Offers
  • Hacktrace Certification Exam will be send after Workshop completion

Curriculum for this course
Introduction
1 Lessons
  • What is web server security?
  • What is OWASP Top 10?
  • Why is there an OWASP Top 10?
  • What is Penetration Testing?
  • Introduction to DVWA
  • Introduction of Apache web server
  • Hardening from A01 Broken Access Control
  • Limit access using .htaccess
  • Forbid access to directory
  • Hardening from A02 Cryptographic Failures
  • Deploying SSL Certificate
  • Deploying HSTS
  • Customizing hash and algorithm for SSL
  • Hardening from A03 Injection
  • Using .htaccess to prevent injection (SQL Injection, XSS)
  • Hardening from A04 Insecure Design and A05 Security Misconfiguration
  • Basic setup secure Apache configuration
  • Hardening from A06 Vulnerable and Outdated Components
  • Basic patching web server components
  • Hardening from A07 Identification and Authentication Failures
  • Deploying basic brute froce prevention
  • Hardening from A08 Software and Data Integrity Failures
  • Perform backup and maintain integrity
  • Hardening from A09 Security Logging and Monitoring Failures
  • Define a proper log configuration
  • Basic syslog analysis
  • Hardening from A10 Server-Side Request Forgery (SSRF)
  • Firewall and access control configuration
  • Harden web server from bots and scanners
Requirements
  • This Workshop is suitable for those of you who are interested in starting a career in the world of IT and professional IT infrastructure guards. This workshop is also suitable for students and students who want to gain knowledge about web server hardening. For IT workers who want to improve their IT capabilities, this workshop is also suitable to add experience in securing web server infrastructure, in accordance with the focus of their work.
+ View more
Description

The increasing number of incidents related to attacks on web applications over the past few years is a warning to it infrastructure guards in every agency. Statistics from IT Chronicles show that by 2020, as many as 30,000 websites will be attacked. Web application is the front page of an organization that needs to be maintained and considered security. A non-profit organization focused on web security, OWASP, issues data on top 10 attacks that can be a barometer of measurement in securing web infrastructure.

In this workshop, Hacktrace will discuss how we can secure an Apache-based web server based on a Top 10 OWASP attack.

+ View more
Other related courses

Student feedback
0
Average rating
  • 0%
  • 0%
  • 0%
  • 0%
  • 0%
Reviews