YoVDO

OWASP Top 10: #5 Broken Access Control and #6 Security Misconfiguration

Offered By: LinkedIn Learning

Tags

Cybersecurity Courses Access Control Courses Web Application Security Courses System Hardening Courses OWASP Top 10 Courses Broken Access Control Courses

Course Description

Overview

Learn about security misconfiguration and vulnerable and outdated components, the fifth and sixth most important security vulnerabilities listed on the 2021 OWASP Top 10.

Syllabus

Introduction
  • 2021 OWASP Top 10
  • OWASP Top 10 series
1. Security Misconfiguration
  • What is security misconfiguration?
  • Example #1: 2020 SolarWinds data breach
  • Example #2: State of Pentesting Report
  • Prevention technique #1: Repeatable hardening
  • Prevention technique #2: Minimal platform
  • Prevention technique #3: Configuration review
2. Insecure Design
  • What are vulnerable and outdated components?
  • Real-world example #1: Equifax breach 2017
  • Real-world example #2: Target breach 2013
  • Prevention technique #1: Remove unnecessary features
  • Prevention technique #2: Continuous inventory management
  • Prevention technique #3: Leverage virtual patching
Conclusion
  • Explore more of the OWASP Top 10

Taught by

Caroline Wong

Related Courses

Learning the OWASP Top 10
LinkedIn Learning Advanced Cyber Security Training: OWASP Top 10 and Web Application Fundamentals
EC-Council via FutureLearn An Introduction to OWASP Top 10 Vulnerabilities
Udemy Master the OWASP Top 10
LinkedIn Learning OWASP Top 10: #1 Injection and #2 Broken Authentication
LinkedIn Learning