This course examines the need to provide security throughout the SDLC, which aligns with Domain 8 on the CISSP exam. We will compare and contrast Agile and the waterfall methodologies, and look at the assessment of web applications and more traditional applications. We will examine common threats like cross-site scripting, buffer overflows and race conditions. Finally, we will examine databases and their vulnerabilities/solutions.
Overview
Syllabus
- Application security
- Our final course examines the need to provide security throughout the SDLC, which is in line with Domain 8, software development security on the CISSP exam. We will examine Agile and the waterfall methodologies, and look at the assessment of web applications and more traditional applications. We will examine common threats like cross-site scripting, buffer overflows and race conditions. Finally, we will examine databases and their vulnerabilities/solutions.
- CISSP practice exam
- This practice exam is similar in length and style to the questions you will find on the ISC2 CISSP exam. You will be given 3 hours to complete all of the questions on the exam.
Taught by
InfoSec Institute Instructor
