C Developer


Overview

The C Developer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed to provide a solid understanding of security features required to develop secure code that integrates into operating systems, operating system modules, embedded systems, or low-level libraries for other high-level languages.

The C Developer learning path covers key application security concepts including:

  • Memory management and string handling
  • Avoiding common pitfalls
  • C specific security flaws

Core

  • AWA 101 Fundamentals of Application Security
  • AWA 102 Secure Software Concepts
  • COD 102-108 Fundamentals of SDLC Security Series (7)
  • COD 261 Threats to Scripts

Advanced

  • COD 201-202 Creating Secure C Code Series (2)
  • COD 301-303 Protecting C Code Series (3)
  • DES 202-205 Fundamentals of Cryptography Series (4)
  • TST 255 Testing for Missing Authentication for Critical Function
  • TST 257 Testing for use of Hard-Coded Credentials
  • TST 259 Testing for Unrestricted Upload of File with Dangerous Type
  • TST 260 Testing for Reliance of Untrusted Inputs in a Security Decision
  • TST 261 Testing for Execution with Unnecessary Privileges
  • TST 264 Testing for Download of Code without Integrity Check
  • TST 266 Testing for Inclusion of Functionality from Untrusted Control Sphere
  • TST 267 Testing for Incorrect Permission Assignment for Critical Resource
  • TST 268 Testing for Use of a Potentially Dangerous Function
  • TST 271 Testing for Improper Restriction of Excessive Authentication Attempts
  • TST 272 Testing for Open Redirect
  • TST 273 Testing for Uncontrolled Format String

Elite

  • DES 101 Fundamentals of Secure Architecture
  • DES 212 Architecture Risk Analysis and Remediation
  • DES 311 Creating Secure Application Architecture
  • ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
  • ENG 211 How to Create Application Security Design Requirements
  • ENG 311 Attack Surface Analysis & Reduction
  • ENG 312 How to Perform a Security Code Review

Learning Path Details

Number of Courses: 41

Total Duration: 19 hours

Total CPE Credits: 23.5