|
|
|
|
||
|
| ||||
| #726 | AppScan Orientation for ISSOs |
| Description: | |
| This class will discuss the current NIH implementation of an enterprise level application level scanner called "IBM Rational Appscan Enterprise 5". It is a core web application vulnerability scanner. Appscan Enterprise 5 is a powerful web application scanner that checks for security vulnerabilities, such as SQL injection, Cross-site scripting and various other security holes pertaining to web servers. It is capable of scanning against a number of different web servers such as, but not limited to, IIS, Apache, and ColdFusion. | |
| Objectives: | |
| Web application security assessments are an essential part in the development lifecycle of any web application. The process of assessing a web application should be handled using the same approach as any other testing (e.g., Unit testing, Quality Assurance, etc.). A well-documented methodology should be followed and the use of automated tools will speed up the process. Topics we will be discussing include:
| |
| Who should attend: | |
| NIH staff with an interest in the topic | |
| Instructor(s): | |
|
Thi Tang, OD/OCIO Nevin Barnett, OD/OCIO |
|
| Time Required: | |
| 3 hours | |
| Sections Available: | ||||
| -- Concluded -- | 726A-09F | October 21 | 9:00 - 12:00 | Fernwood Building, Lower Level Classroom - 1NW02 |
| -- Concluded -- | 726B-09F | October 23 | 1:00 - 4:00 | Fernwood Building, Lower Level Classroom - 1NW02 |
| NOTE: Although this course has already taken place, we'll put you on a waiting list for the next available session. |
Course Listing
Home | Index | Map | Comments | Disclaimers | Privacy | Accessibility