2-7739MFOpenTextMF-2-773924.4<p>On completion of this course, participants should be able to:</p> <ul> <li>Use Fortify DAST WebInspect to run, view, and respond to security incidents leveraging Fortify technologies to solve customer business problems based on the defined scenarios.</li><li>Successfully complete the lessons below in an environment that acts as a production environment.</li></ul><p>To be successful in this course, you should have the following prerequisites or knowledge:</p> <ul> <li>Familiarity with WebInspect for at least one month</li><li>Basic programming skills</li><li>Ability to read HTTP(S) requests and responses</li><li>Basic understanding of web technologies, REST API, and command-line</li><li>Proficiency in navigating Windows desktop, browser, and file system</li></ul><p>This course is intended for:</p> <ul> <li>Security Champions</li><li>Application Testers</li><li>Administrators responsible for utilizing WebInspect within their environment</li><li>AppSec Users taking their first steps toward leveraging the power of Fortify DAST WebInspect</li></ul><h5>Learning Scenario:</h5><p>The course will follow your journey as a Security AppSec Tester. Your management has decided to purchase the Fortify DAST WebInspect solution to address the growing risks in application security and to empower users to effectively identify vulnerabilities in web applications.</p> <p>As the security champion, you will become proficient with the Fortify DAST WebInspect technology in a lab environment that closely mirrors a production setting.</p> <h5>Chapter 01: DAST methodology, basic scans, scan results, macros, and reports</h5><ul> <li>Explain how DAST crawls and audits an application</li><li>Learn the DAST licensing</li><li>Run a Smart Update</li><li>Learn the key concepts of DAST</li><li>Recognize the DAST User Interfaces (UI)</li><li>Discover where to find DAST help</li><li>Run a Guided scan</li><li>Create a Login macro</li><li>Run a scan using your Login macro</li><li>Generate DAST reports</li></ul><h5>Chapter 02: Additional DAST Scanning Methods and Macros</h5><ul> <li>Create a Workflow macro while running a Workflow scan</li><li>Comprehend DAST Two-Factor (2F) authentication</li><li>Run a Manual scan</li><li>Run a List-Driven scan</li><li>Manage and schedule scans in DAST</li><li>Compare scan results</li><li>Use command-line to run scans</li></ul><h5>Chapter 03: API Scans, Postman Collections, Security Tools, and Scan Policy</h5><ul> <li>Run REST API scans</li><li>Generate vulnerability report based on the scans</li><li>Run a SOAP Web Services scan</li><li>Run advanced API Postman Collection scans</li><li>Utilize the DAST security tools</li></ul>On completion of this course, participants should be able to: - Use Fortify DAST WebInspect to run, view, and respond to security incidents leveraging Fortify technologies to solve customer business problems based on the defined scenarios. - Successfully complete the lessons below in an environment that acts as a production environment.To be successful in this course, you should have the following prerequisites or knowledge: - Familiarity with WebInspect for at least one month - Basic programming skills - Ability to read HTTP(S) requests and responses - Basic understanding of web technologies, REST API, and command-line - Proficiency in navigating Windows desktop, browser, and file systemThis course is intended for: - Security Champions - Application Testers - Administrators responsible for utilizing WebInspect within their environment - AppSec Users taking their first steps toward leveraging the power of Fortify DAST WebInspectLearning Scenario: The course will follow your journey as a Security AppSec Tester. Your management has decided to purchase the Fortify DAST WebInspect solution to address the growing risks in application security and to empower users to effectively identify vulnerabilities in web applications. As the security champion, you will become proficient with the Fortify DAST WebInspect technology in a lab environment that closely mirrors a production setting. Chapter 01: DAST methodology, basic scans, scan results, macros, and reports - Explain how DAST crawls and audits an application - Learn the DAST licensing - Run a Smart Update - Learn the key concepts of DAST - Recognize the DAST User Interfaces (UI) - Discover where to find DAST help - Run a Guided scan - Create a Login macro - Run a scan using your Login macro - Generate DAST reports Chapter 02: Additional DAST Scanning Methods and Macros - Create a Workflow macro while running a Workflow scan - Comprehend DAST Two-Factor (2F) authentication - Run a Manual scan - Run a List-Driven scan - Manage and schedule scans in DAST - Compare scan results - Use command-line to run scans Chapter 03: API Scans, Postman Collections, Security Tools, and Scan Policy - Run REST API scans - Generate vulnerability report based on the scans - Run a SOAP Web Services scan - Run advanced API Postman Collection scans - Utilize the DAST security tools3 jours2400.00