A comprehensive evaluation of software security vulnerabilities and threats in software exploitations. Topics include buffer overflows, SQL injection, and session hijacking. Focus is on developing defensive methodologies, including the use of advanced testing and program analysis techniques, to prevent or mitigate these attacks.
Learning Objectives
Learners will master the following Cybersecurity Skills upon completion of the course.
Explain secure software fundamentals and principles
Produce software components that satisfy their functional requirements without introducing vulnerabilities
Justify the characteristics of secure programming
Explain the vulnerabilities inherent in different programming languages
Evaluate vulnerabilities introduced using libraries and how to mitigate those vulnerabilities
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.