Center for Qualified CyberSecurity Excellence & Mastery

Get Q/ualified!

Q/SSP® Qualified/ Software Security Penetration Testing

New Rules to Attack Software

This 5-day hands-on workshop introduces you to "How to penetrate your software," a step-by-step methodology to effectively and efficiently attack software, break and FIX software. You will learn a very applied and non-rigid approach to testing software for common bugs. It's a departure from conventional network penetration in which porgrammers prepare a written attack plan and then use it as a script when attacking the software. The class teaches you how to plan attacks "on the fly" by providing you with insight, experience, and a nose for where bugs are hiding.This workshop is presented in an "interwoven" format where each topic has a hands-on component so that you can explore the attacking techniques and software tools using real software.

THIS CLASS BEST taken in the 5 day SOFTWARE SECURITY BOOTCAMP! $2,995
HOW TO BREAK & FIX SOFWARE SECURITY
and HOW TO BREAK & FIX WEB SECURITY
and FUNDAMENTALS OF SECURE SOFWARE PROGRAMMING
and SOFTWARE SECURITY TESTING BEST PRACTICES
and HACKING SOFTWARE - ATTACKER TECHNIQUES EXPOSED

Class Fee: $2,995
Time: 7:45am - 5pm
Location: Click here to view the class schedule
Learning Level: Intermediate
CPE Credits: 40
Prerequisites: Understanding of TCP/IP protocols

Method of Delivery - Residential On Ground
Method of Evaluation: 1. 95 % attendance 2. 100 % completion of Lab
Grading: Pass = 95% Attendance and 100% Completion of Labs and Practical
Fail => 95% Attendance and > 100% Completion of Labs and Practical

Learning Level: Programmer - Intermediate

Who Should Attend

Information Security and IT managers; Information Assurance Programmers; Information Security Analysts and Consultants; Internal Auditors and Audit Consultants; QA Specialists,

In this class you will learn:

Take-Home Bonus:

Participants will also receive a copy of Exploiting Software or a Practical Guide to Testing (one copy per company), a reference book of published testing articles, class notes, checklists, and a CD containing Holodeck Lite (fault injection software testing tool.) 


Class Agenda:

I.  Introduction

II.  Understanding the Environment

III.  Software Capabilities

IV.  Software Testing

V.  An Overview of the Methodology of How To Attack Software

a.) The User Interface (UI)

UI Areas 1 & 2 - The Input and Output Domains

UI Area 3 -Stored Data

UI Area 4- Computation

b.) The Kernel Interface

c.) The File System Interface

d.) The Software Interface

*Class fees are subject to change

View Class Schedules