Moocable is learner-supported. When you buy through links on our site, we may earn an affiliate commission.
Certifications

CISSP Cert Prep (2021): 8 Software Development Security

via LinkedIn Learning

Description

Use this course to help you prepare for the Software Development Security domain of the 2021 CISSP exam.

Tags
CCSP Certification

Syllabus

Syllabus IntroductionSoftware development securityWhat you need to knowStudy resources1. Software Development LifecycleSoftware platformsDevelopment methodologiesMaturity modelsChange managementAutomation and DevOpsProgramming languagesAcquired software2. Software Quality AssuranceCode reviewSoftware testingCode security testsFuzz testingCode repositoriesApplication managementThird-party codeSoftware risk analysis and mitigation3. Application AttacksOWASP Top 10Application securityPreventing SQL injectionUnderstanding cross-site scriptingRequest forgeryDefending against directory traversalOverflow attacksExplaining cookies and attachmentsSession hijackingCode execution attacksPrivilege escalationDriver manipulationMemory vulnerabiliitiesRace condition vulnerabilities4. Secure Coding PracticesInput validationParameterized queriesAuthentication/session management issuesOutput encodingError and exception handlingCode signingDatabase securityData deidentificationData obfuscation5. Cloud ComputingWhat is the cloud?Cloud computing rolesDrivers for cloud computingSecurity service providersCloud activities and the cloud reference architectureCloud deployment modelsCloud service categoriesConclusionContinuing your studies Read more

Start Learning Find study partner
Certifications

CISSP Cert Prep (2021): 8 Software Development Security

via LinkedIn Learning
Start Learning Find study partner
Affiliate notice

Use this course to help you prepare for the Software Development Security domain of the 2021 CISSP exam.

Syllabus IntroductionSoftware development securityWhat you need to knowStudy resources1. Software Development LifecycleSoftware platformsDevelopment methodologiesMaturity modelsChange managementAutomation and DevOpsProgramming languagesAcquired software2. Software Quality AssuranceCode reviewSoftware testingCode security testsFuzz testingCode repositoriesApplication managementThird-party codeSoftware risk analysis and mitigation3. Application AttacksOWASP Top 10Application securityPreventing SQL injectionUnderstanding cross-site scriptingRequest forgeryDefending against directory traversalOverflow attacksExplaining cookies and attachmentsSession hijackingCode execution attacksPrivilege escalationDriver manipulationMemory vulnerabiliitiesRace condition vulnerabilities4. Secure Coding PracticesInput validationParameterized queriesAuthentication/session management issuesOutput encodingError and exception handlingCode signingDatabase securityData deidentificationData obfuscation5. Cloud ComputingWhat is the cloud?Cloud computing rolesDrivers for cloud computingSecurity service providersCloud activities and the cloud reference architectureCloud deployment modelsCloud service categoriesConclusionContinuing your studies Read more

Tags

CCSP Certification

Quick Links

Browse by subject

Browse by provider

Browse by university

Browse by publisher

Browse by institution

Roadmaps

Posts