TST 266 - Testing for Inclusion of Functionality from Untrusted Control Sphere (CWE-829)


Course Overview

In this course, you will learn how to identify and mitigate CWE-829: Inclusion of Functionality from Untrusted Control Sphere.

Topics include:

  • Impacts of including functionality from untrusted sources
  • Techniques for finding improper inclusion issues through code review and testing
  • Secure coding best practices to prevent inclusion of untrusted functions
  • Technology- and platform-specific weaknesses where applicable
Ready to Demo this course? Questions? Contact Us!