Securing Java Web Applications
This course focuses on detection and mitigation of the input validation family of vulnerabilities, which can steal data, take control of servers, and cause havoc. You’ll know how to be prepared to arm your application with the appropriate defense.
Is your site being hacked right now? How do you know? Where are the security holes in your Java web applications, waiting to be exploited? Security breaches are one of the biggest risks for business today. Fortunately, many attacks are well-known and follow common patterns. In this course, Securing Java Web Applications, you’ll learn the top major input validation exploits as identified by OWASP, how they can be exploited in Java web applications, and how they can be corrected. First, you’ll explore cross-site scripting and log injection. Next, you’ll dive into understanding cross-site request forgery. Finally, you’ll finish the course by covering malicious file upload. By the end of this course, you’ll have the necessary skills and knowledge to make your code more secure.
Author Name: Josh Cummings
Author Description:
Like many software craftsmen, Josh eats, sleeps, and dreams in code. He codes for fun, and his kids code for fun! Right now, Josh works as a full-time committer on Spring Security and loves every minute. Hailing from Salt Lake City, Utah, Josh loves to hike and be in the outdoors when he’s not hacking away at some new Java library. He also loves to juggle, especially on every third Saturday in June. Application Security holds a special place in his heart, a place diametrically opposed to and cos… more
Table of Contents
- Course Overview
1min - How Many Vulnerabilities Can You Spot?
10mins - Preventing Cross-site Scripting Attacks
30mins - Preventing Log Injection and Log Forgery
13mins - Preventing CSRF, Response Splitting, and Open Redirect
36mins - Preventing Directory Traversal and Malicious File Upload
22mins - Preventing SQL and NoSQL Injection
19mins - Building in Security First
10mins
There are no reviews yet.