SDT 315 - Testing for Incorrect Permission Assignment for Critical Resource (UPDATED)

Course Details

Course Number: SDT 315

Course Duration: 15 minutes

Course CPE Credits: .25

NICE Specialty Areas

Software Development (DEV)

Related Learning Paths

Embedded Test Engineer
Q/A Test Engineer

Related Subject Matter

CWE
NICE
OWASP Web
Software Development Testing

Foreign Languages Available:

English

Course Overview

The use of insecure settings for access permissions allows attackers to perform unauthorized access either to some part of the system or to an application-controlled resource. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-732 by the 2020 CWE Top 25.

Topics include:

Recognizing the impact of this vulnerability
Techniques for finding Incorrect Permission Assignment for critical
resource in an application source code
Application of secure coding best practices to prevent these attacks
Testing to detect this security weakness

Ready to Demo this course? Questions? Contact Us!