This WebInspect Enterprise Using and Administrating training course introduces the WebInspect Enterprise which manages dynamic and static scanning, which helps to ensure effective and efficient application security during your Software Development Life Cycle (SDLC). This course will demonstrate how to create and manage your automated Web application vulnerability scans and provide security risk solutions. Also, this course provides hands-on activities using a practical, solutions-based approach to identify and mitigate today’s biggest application security risks. You will learn to create, scan, audit and manage projects using both Fortify SSC (Software Security Center) and WebInspect Enterprise.
By attending WebInspect Enterprise Using and Administrating workshop, delegates will learn to:
- Define the architecture of WebInspect Enterprise (WIE) and how each Fortify product integrates into the solution
- Configure and scan applications for the WIE
- Manage applications, resources, and users in the Software Security Center (SSC) and both the WIE Admin console and WIE Web-based console
- Perform Web application analysis and reporting through the WIE
- Basic programming skills (able to read Java, C/C++, or .NET.)
- Basic understanding of web technologies: HTTP Requests and Responses, HTML tags, JavaScript, and server-side dynamic content (JSP, ASP or similar)
- Familiarity with some of the most common Web application vulnerabilities (i.e. OWASP Top 10)
- Familiarity with application security
- Have worked with Dynamic testing in WebInspect
The WebInspect Enterprise Using and Administrating class is ideal for:
- Application developers, development managers, security-focused QA testers, security leads, and auditors.