- Positive and negative testing
- OWASP Testing Guide
- Manual vs. automated testing
- Scanning vs. pen testing
- Testing in the right environment
- Pen testing a web app
- Evading SIEMs
- Coordinating red and blue teams
- Testing for OWASP Top Ten vulnerabilities
Skill Level Intermediate
- [Jerod Brennen] When testing web applications for potential security vulnerabilities, those tests fall into one of two overarching categories. Offline tests and online tests. With online testing, you'll be interacting directly with deployed instances of your in scope application. Online testing is generally considered riskier as testing activities may have an unplanned impact on the applications being tested. The trade off is that the results are likely to be much more accurate than those you would generate from offline testing. Both types of testing have value, and you should make every effort to perform both offline and online testing of the business critical apps in your environment. Hello, I'm Jerod Brennen. I've been working in Information Security long enough to have earned every gray hair in my beard. And I want to share what I've learned over the years to help you begin applying that same knowledge today. Are you ready to learn how to conduct online application security testing? Good. Let's get started.
Security Testing Essential Trainingwith Jerod Brennen2h 48m Beginner
Security Testing: Nmap Security Scanningwith Mike Chapple1h 46m Intermediate
DevSecOps: Automated Security Testingwith James Wickett1h 35m Intermediate
1. Security Testing in QA
2. Assessing Deployed Apps
3. Web App Pen Testing
4. Testing for the OWASP Top Ten (2017)
Next steps3m 9s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.