Application Security Testing Workshop
The Kentucky ISSA Chapter in partnership with Ellipsis Information Security LLC is hosting an information security workshop. This day-long event covers the basics of testing web applications for security vulnerabilities plus DevSecOps and Automation. It includes methods to test for vulnerabilities plus guidance on remediating issues. This course will be taught by a globally recognized expert in application security with more than a decade of experience teaching all skill levels. Whether you are just beginning or advanced, there will be information for you. Seating is limited and the event is expected to sell out.
The class will contain interactive lectures, frequent demonstrations, and lots of lab time. Students will be provided with a customized virtual machine with the professional version of Mutillidae web security training environment pre-installed. The virtual machine is completely self-contained with all tools, files, targets, and labs set up in advance! The labs are guided, and the course includes a lab assistant to help. Join us to learn new skills, better understand web application security and hang out with others from the InfoSec community. Don't let the price fool you. The KY ISSA is offering this enterprise quality class at a deeply discounted rate.
Topics:
Tools, such as Burp-Suite, several vulnerability scanners, DevOps automation, and others used to test web application security
Impactful, risky web application vulnerabilities like Cross-site Scripting and SQL Injection
Labs using real, vulnerable web pages (no fake stuff here)
Practical skills
When:
Saturday, January 20th, 2024
8:30 AM - 4:30 PM
Where:
12501 Lakefront Place Louisville, KY 40299
(Farm Credit Mid-America Building - Schoolhouse East (132); Schoolhouse West (130))
Cost: $150
ISSA Kentuckiana Members Cost: $100 ($50 off w/ member discount code)
Costs are subsidized by the ISSA Kentuckiana Chapter to make high quality training available for everyone! One way we are able to do this is our sponsors.
Sponsor, Lunch, and Lunch Presentation provided by Stack Hawk!
Certified Security Penetration Tester & Cloud Security Architect
Google PCSE|OSCP|GPCS|GCLD|GXPN-GOLD|GPEN-GOLD|GWAPT-GOLD|GCIH-GOLD|GMOB|GSEC|GISF|Sec+
Jeremy is the Distinguished Cybersecurity Architect for the largest multi-national transportation logistics company in the world. Jeremy is also the owner of Ellipsis Information Security and teaches courses for Ellipsis and SANS Institute. As a Director of Education for the Kentucky ISSA chapter, Jeremy presents on application security, penetration testing and defense along with operating the "webpwnized" YouTube video channel. Additionally, Jeremy develops the open-source OWASP Mutillidae II training environment. Jeremy has a Bachelor of Science in Computer Science from Indiana University, a Graduate Certificate in Cybersecurity and Master of Computer Science and Engineering from the University of Louisville and is a GIAC-certified Web, API, Mobile and Network Security Penetration Tester, and Cloud Security Architect.