EncartaLabs

HP WebInspect

( Duration: 3 Days )

The HP WebInspect training course outlines HP's comprehensive automated web application and Web services vulnerability scanning solution. In this course, security professionals and compliance auditors will learn how to quickly and easily analyze the numerous web applications and web services in their environment.

By attending HP WebInspect workshop, Participants will learn to:

  • Define how an attacker looks at a web application for exploitation
  • Install HP WebInspect licensing
  • Define HTTP protocol to search for vulnerabilities
  • Use HP WebInspect as a dynamic analysis security testing (DAST) tool
  • Recognize the functional characteristics and components of WebInspect
  • Create comprehensive, manual, mobile, and work-flow driven scans for a target application
  • Create Web macros and reports
  • Use the HP Security Toolkit

  • An understanding of basic web communication protocols
  • Familiarity with some of the most common Web application vulnerabilities (i.e. OWASP Top 10)

  • Evaluating an organization's application security posture, quality, and compliance
  • Application development and testing

COURSE AGENDA

1

Application Security

  • Attackers Point of View
  • OWASP Top 10 and 7 Pernicious Kingdoms
  • Exploit Examples
2

HP WebInspect Introduction

  • Theory of Operation
  • WebInspect Architectural Concepts
  • Installation & Licensing
3

HP WebInspect – GUI Overview

  • Basic Setting Control
  • Default Scanning
  • Understanding of Macro Features
4

HP WebInspect Mobile

  • Supported Devices
  • Methods of Scanning
5

HTTP for Security Testers

  • HTTP Basics
  • Application Testing Challenges
6

Scan Policies

  • Compliance and Policy Manager
  • Default Scan Policies
  • Custom Scan Policies
7

Reports

  • Default Reports
  • Creating Custom Reports
  • Exporting Reports & Scans
8

Web Service Scanning

  • Concepts and Terminology
  • One time Scans
  • Scheduling Scans
9

Scan Settings

  • Web Services Scanning
10

HP Security Toolkit

  • Standard Tools
  • Restricted Tools
  • Third Party Tool Integration

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 4,000 Modules on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting http://encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top