2 days
Online Offline

DescriptionWhat we offer

This course is designed to give a basic proficiency in the use of AppScan Standard to scan web sites for vulnerabilities.

ObjectivesWhat you learn

When you finish this course, you should be able to perform the following tasks:
?Explain the capabilities of Security AppScan Standard
?Describe the potential risks of conducting an automated security scan
?Configure and run a security scan
?Compare manual and automatic exploration
?Describe the process of analyzing scan results and using issue management
?Review scan results, filter false positives, prioritize issues, and communicate them to your stakeholders
?Optimize your scan configuration and use advanced techniques to scan your web applications
?Explain scan logs and messages, export a scan log, and troubleshoot scans
?Create reports that are based on discovered security issues
?Extend the functions by using the Security AppScan Standard Software Development Kit (SDK) and eXtensions Framework (AXF)
?Troubleshoot Security AppScan Standard

TopicsThe best for you

  1. AppScanStandard Overview
  2. Installation and setup
  3. Maximizing your installation
  4. Configuring a scan
  5. Running a scan
  6. Reviewing the results
  7. Creating reports and exporting data
  8. Scanning Web 2.0 applications
  9. Logging in and managing sessions
  10. Glass box and malware scanning
  11. Content-based scanning
  12. Optimizing your scan
  13. Scanning web services
  14. Extending AppScan Standard
  15. Troubleshooting AppScan

PrerequisitesWhat should you know

Before taking this course, make sure that you have the following skills:

  • Completion of TK330G Web Application Security Fundamentals
  • Familiarity with web site technologies
  • Familiarity with basic internet protocols

AudienceWho should attend

Beginning AppScan users