YoVDO

CompTIA Security+ (SY0-601) Cert Prep: 2 Secure Code Design and Implementation

Offered By: LinkedIn Learning

Tags

CompTIA Security+ (Plus) Courses Information Security Certifications Courses SQL Injection Courses Software Quality Assurance Courses Input Validation Courses Secure Coding Practices Courses Session Hijacking Courses OWASP Top 10 Courses

Course Description

Overview

Learn about the risks associated with application vulnerabilities—and the secure coding practices that can help you avoid attacks—as you prepare for the Security+ exam.

Syllabus

Introduction
  • Secure code design and implementation
  • What you need to know
  • Study resources
1. Software Development Lifecycle
  • Software platforms
  • Development methodologies
  • Maturity models
  • Change management
  • Automation and DevOps
2. Software Quality Assurance
  • Code review
  • Software testing
  • Code security tests
  • Fuzz testing
  • Code repositories
  • Application management
  • Third-party code
3. Application Attacks
  • OWASP Top 10
  • Application security
  • Prevent SQL injection
  • Cross-site scripting
  • Request forgery
  • Defend against directory traversal
  • Overflow attacks
  • Cookies and attachments
  • Session hijacking
  • Code execution attacks
  • Privilege escalation
  • Driver manipulation
  • Memory vulnerabiliities
  • Race condition vulnerabilities
4. Secure Coding Practices
  • Input validation
  • Parameterized queries
  • Authentication and session management issues
  • Output encoding
  • Error and exception handling
  • Code signing
  • Database security
  • Data deidentification
  • Data obfuscation
Conclusion
  • Continue your studies

Taught by

Mike Chapple

Related Courses

Burp Suite: Introducción a las pruebas de penetración
Coursera Project Network via Coursera
Ethical Hacking & Network Defe
City College of San Francisco via California Community Colleges System
OWASP Top 10: Injection Attacks
Codecademy
Defending Node Applications from SQL Injection, XSS, & CSRF Attacks
Codecademy
Introduction to Cybersecurity
Codecademy