Web Applications Attack and Defence Course

This 5-day course provides an understanding of basic principles of web application security. Most of the times we will be focusing on penetration testing, although the course will also deal with prevention measures and advice for developers.

Learning Objectives

  • Understand the most important web application vulnerabilities: how they can be identified and exploited and how to protect against them.
  • Web application pen-testing.
  • Basic handling of manual scanning tools like Burp Suite.
  • Knowledge of additional resources: web app firewalls, educational web apps, OWASP, etc.

 Target Audience

Military and civilian IT specialists. Students do not need to be web developers or have prior experience as web app pen-testers. However, a basic understanding of web technologies (basic html, javascript, SQL) and some server side coding experience will be beneficial.

Prerequisites

  • Network basics (IP’s, TCP, ports, client – server protocols, SSL).
  • General understanding of web technologies (basic html, javascript, SQL).
  • Basic shell commands (Linux and/or Windows).
  • Some server side coding experience will be highly beneficial, although not essential.

 Pre-study e-Learning material

ADL 346 Web Application Security (Pre-study material for Web Applications Attack and Defence Course) on the NATO e-Learning website (JADL – https://jadl.act.nato.int/)

Registration

Registration opens on 22nd of February, 2021. Applicants from CCDCOE member nations should use the registration code provided by their national Point of Contact. An email confirming the participation will be sent only after the registration has closed.

If you have any questions or issues with registration, please contact [email protected]