Course Catalog / Subject / Security Testing

Security Testing

The goal of these courses is to provide the required knowledge necessary to identify common threats systems in a system, measure potential vulnerabilities, and detect all possible security defects. Courses will enable learners to apply basic security principles and conduct different types of security testing across all major focus areas such as network security, system software security, client-side application security, and server-side application security.

View All Courses Download Course Catalog

ATK 201 – Using the MITRE ATT&CK Framework

15 Minutes

Advanced

COD 106 – The Importance of Software Integration and Testing

15 Minutes

Core

CYB 250 – Cyber Threat Hunting: Tactics, Techniques, and Procedures (TTP)

Course Catalog / Subject / Security Testing

Security Testing

ATK 201 – Using the MITRE ATT&CK Framework

COD 106 – The Importance of Software Integration and Testing

CYB 250 – Cyber Threat Hunting: Tactics, Techniques, and Procedures (TTP)

CYB 301 – Fundamentals of Ethical Hacking

CYB 311 – Threat Analysis with AI

SDT 301 – Testing for Injection

SDT 302 – Testing for Identification and Authentication Failures

SDT 303 – Testing for Cryptographic Failures

SDT 304 – Testing for Insecure Design

SDT 305 – Testing for Broken Access Control

SDT 306 – Testing for Security Misconfiguration

SDT 307 – Testing for Server-Side Request Forgery (SSRF)

SDT 308 – Testing for Software and Data Integrity Failures

SDT 309 – Testing for Vulnerable and Outdated Components

SDT 310 – Testing for Security Logging and Monitoring Failures

SDT 311 – Testing for Integer Overflow or Wraparound

SDT 312 – Testing for (Path Traversal) Improper Limitation of a Pathname to a Restricted Directory

SDT 313 – Testing for (CSRF) Cross Site Request Forgery

SDT 314 – Testing for Unrestricted Upload of File with Dangerous Type

SDT 315 – Testing for Incorrect Permission Assignment for Critical Resource

SDT 316 – Testing for Use of Hard-Coded Credentials

SDT 317 – Testing for Improper Control of Generation of Code

SDT 318 – Testing for Insufficiently Protected Credentials

SDT 319 – Testing for Out-of-bounds Read

SDT 320 – Testing for Out-of-bounds Write

SDT 321 – Testing for Uncontrolled Resource Consumption

SDT 322 – Testing for Improper Privilege Management

SDT 323 – Testing for Improper Input Validation

SDT 324 – Testing for Improper Restriction of Operations within the Bounds of a Memory Buffer

SDT 325 – Testing for NULL Pointer Dereference

SDT 326 – Testing for Use After Free

TST 101 – Fundamentals of Security Testing

TST 202 – Penetration Testing Fundamentals

TST 205 – Performing Vulnerability Scans

TST 206 – ASVS Requirements for Developers

TST 301 – Infrastructure Penetration Testing

TST 302 – Application Penetration Testing

TST 303 – Penetration Testing for Google Cloud Platform

TST 304 – Penetration Testing for AWS Cloud

TST 305 – Penetration Testing for Azure Cloud

TST 351 – Penetration Testing for TLS Vulnerabilities

TST 352 – Penetration Testing for Injection Vulnerabilities

TST 353 – Penetration Testing for SQL Injection

TST 354 – Penetration Testing for Memory Corruption Vulnerabilities

TST 355 – Penetration Testing for Authorization Vulnerabilities

TST 356 – Penetration Testing for Cross-Site Scripting (XSS)

TST 357 – Penetration Testing for Hardcoded Secrets

TST 358 – Penetration Testing Wireless Networks

TST 359 – Penetration Testing Network Infrastructure

TST 360 – Penetration Testing for Authentication Vulnerabilities