Ec-Council Certified Secure Programmer (ECSP) Eğitimi

Daha güvenli ve kontrol edilebilir yazılım geliştirmek için gereken mantığı ve pratik bilgiyi aktaran, uygulamalı bir eğitimdir. EC-Council Certified Secure Programmer .NET (ECSP .NET) eğitimi güvenli uygulamalar ve web uygulamaları kodlayan, geliştiren uygulama geliştiriciler için düzenlenmektedir.

EĞİTİME BAŞVUR

EC-Council Certified Secure Programmer .NET (ECSP .NET) eğitimi ürün ve uygulamaların kalitesini arttırmak ve güvenlik açıklarının tespiti ile uygulama geliştirme yaşam döngüsüne güvenlik önlemlerinin dahil edilmesine yöneliktir. .Net neredeyse tüm firmalarda web uygulama geliştirmede kullanılmaktadır.

Ec-Council Certified Secure Programmer (ECSP) Eğitimi

CEH eğitimi, öğrencilere hacking araçlarını ve teknolojilerini gösterirken, ECSA bir adım öteye geçerek bu araçlar ve teknolojilerden elde edilen sonucun nasıl analiz edildiğini ortaya çıkartmaktadır. Test etme metotları ve teknikler ışığında, ECSA sınıfı katılımcılarına, altyapı güvenliği risklerini etkili olarak tanımak ve hafifletmek üzere yoğun değerlendirmelerde yardımcı olur. ESCP eğitiminde ise daha güvenli ve kontrol edilebilir yazılım geliştirmek için gereken mantığı ve pratik bilgiyi aktaran, uygulamalı bir eğitim olarak karşımıza gelmektedir.

Pentest uzmanı yetiştirme amaçlı Ec-Council tarafından geliştirilen eğitim Türkçe olarak anlatılmaktadır. BGA Bilgi Güvenliği AKADEMİSİ, Türkiye’deki EC-Council onaylı ve resmi akredite kurumdur. Aynı zamanda EC-Council CEH, LPT, ECSP, ESCA ve benzeri eğitimleri yapmaya yetkili eğitim merkezidir.

Eğitim konuları aşağıdaki bölümde belirtilmiştir. Sınav ve eğitim ücretleri ile detaylı bilgi için egitim@bga.com.tr adresimiz ile iletişime geçebilirsiniz.

Ec-Council Certified Secure Programmer (ECSP) Eğitimi

Eğitim takvimini inceleyerek eğitim programınızı oluşturun!

EĞİTİM TAKVİMİ

Ec-Council Certified Secure Programmer (ECSP) Eğitimi İçeriği

Eğitim içeriklerini görmek için başlıklara tıklayınız

Uzman Seviyesi

5 Gün

Temel Programlama Bilgisi

BGA Security tarafından katılım sertifikası verilecektir. Eğitim sonrası sertifika sınavına girerek ECSP ünvanı almaya hak kazanabilirsiniz.

Module I: Introduction to Secure Coding

Software Security Scenario
Secure Coding
Common Security Mistakes
Why Security Mistakes Are Made
Need for Secure Programming
Building Blocks of Software Security
Types of Security Vulnerabilities
Vulnerability Cycle
Types of Attacks
Hackers and Crackers or Attackers
Risk Assessment and Threat Modeling
STRIDE Threat Model
Common Criteria
Security Architecture
Security Principles
Secure Development Checklists:
Use of Privilege
Data, Configuration, and Temporary Files
Network Port Use
Audit Logs
User-Server Authentication
Summary

Module II: Designing Secure Architecture

Introduction
Secure Architecture
Application Security
Factors Affecting Application Security
Software Engineering and System Development Life Cycle (SDLC)
Different Phases of Software Development Life Cycle
System Requirements
Specifications
Design
Coding
Testing
Integration Testing
Maintenance
Software Methodology Models:
Waterfall Model
RAD (Rapid Application Development)
JAD (Joint Application Development)
Fountain Model
Spiral Model
Build and Fix
Synchronize-and-Stabilize
Agile Methodologies
Extreme Programming (XP)
XP Practices
The Rules and Practices of Extreme Programming
Unified Modeling Language (UML)
Primary Goals
Diagram
UML Tool
Rational Rose
Vulnerabilities and Other Security Issues in a Software Application
Security Through Obscurity
Buffer Overflows
Format String Vulnerabilities/ Race Conditions
Locking Problems
Exception Handling
Fundamentals of Control Granularity
Concepts Of Fail Safe Design Strategies
Fail Safe Design Strategies:
Fault Tolerance and Detection
Fault Removal and Avoidance
Input and Parameter Validation
Encrypting Secrets in Memory and Storage
Scrubbing Information
Privilege Levels for Information Access
Loose Coupling
High Cohesion
Change Management and Version Control
Best Practices for Software Development Projects
Summary

Module III: Cryptography

Introduction to Cryptography
Encryption
Decryption
Use of Cryptography
Classical Cryptographic Techniques
Modern Cryptographic Techniques
Cipher
RSA (Rivest Shamir Adleman)
Example of RSA Algorithm
RSA Attacks
Implementation of RSA in C++
Data Encryption Standard (DES)
DES Overview
Implementation of DES in Java
RC4, RC5, RC6, Blowfish
RC5
Blowfish Algorithm in C
Message Digest Functions
One-way Bash Functions
MD5
Implementation of MD5 in Java
SHA (Secure Hash Algorithm)
SHA Implementation in Java
SSL (Secure Sockets Layer)
What is SSH?
SSH (Secure Shell)
Algorithms and Security
Disk Encryption
Government Access to Keys (GAK)
Digital Signature
Components of a Digital Signature
Method of Digital Signature Technology
Use of Digital Signature
Digital Signature Standard
Digital Signature Algorithm: Signature Generation/Verification
Digital Signature Algorithms: ECDSA, ElGamal Signature Scheme
Challenges and Opportunities
Digital Certificates
Creating and Verifying a Simple XML Digital Signature in C#
Cleversafe Grid Builder http://www.cleversafe.com/
PGP (Pretty Good Privacy)
CypherCalc
Command Line Scriptor
CryptoHeaven
Cryptanalysis
Cryptography Attacks
Brute-Force Attack
Use Of Cryptography
Summary

Module IV: Buffer Overflows

Buffer Overflows
Reasons for Buffer Overflow Attacks
Why are Programs/Applications Vulnerable?
Understanding Stacks
Understanding Heaps
Types of Buffer Overflows: Stack-based Buffer Overflow
A Simple Uncontrolled Overflow of the Stack
Stack Based Buffer Overflows
Types of Buffer Overflows: Heap-based Buffer Overflow
Heap Memory Buffer Overflow Bug
Heap-based Buffer Overflow
How to Detect Buffer Overflows in a Program
Attacking a Real Program
Defense Against Buffer Overflows
Tool to Defend Buffer Overflow: Return Address Defender (RAD)
Tool to Defend Buffer Overflow: StackGuard
Tool to Defend Buffer Overflow: Immunix System
Vulnerability Search – ICAT
Valgrind
Insure++
Insure++: Features
Buffer Overflow Protection Solution: Libsafe
Comparing Functions of libc and Libsafe
Simple Buffer Overflow in C
Code Analysis
Summary

Module V: Secure C and C++ Programming

Introduction of C/C++
Vulnerable C/C++ Functions
Strcpy()
Strncat()
Strncpy()
Sprintf()
Gets()
C/C++ Vulnerabilities:
Buffer Overflow
Strings
Countermeasures
Integer Vulnerabilities
Truncation
Sign Error
Countermeasures
Pointer Subterfuge
Dynamic Memory Management
Stack Smashing
GCC Extension to Protect Stack-Smashing Attacks
Heap-Based Buffer Overflow
Off By One/Five Errors
Double Free Vulnerability
Secure Memory Allocation Tips
Symmetric Encryption
Symmetric Encryption in C++
Blowfish Algorithm in C
Public Key Cryptography
Public Key Cryptography in C++
Networking
Creating an SSL Client in C++
Creating an SSL Server
Random Number Generation Problem
Anti-Tampering
Anti-Tampering Techniques
Erasing Data from Memory Securely using C/C++
Preventing Memory From Being Paged to Disk
Using Variable Arguments Properly
Signal Handling
Encapsulation in C++
Best Practices for Input Validation
Code Profiling And Memory Debugging Tool: Val grind
Summary

Module VI: Secure Java and JSP Programming

Introduction to Java
JVM
Java Security
Sandbox Model
Security Issues with Java
SQL Injection Attack
SQL Injection using UNION
Preventive Measures for SQL Injection
URL Tampering
Denial-of-Service (DoS) Attack on Applet
Sample Code for DoS Attack
DoS by Opening Untrusted Windows
Preventing DOS Attacks
.Class File Format
Byte Code Attack
Reverse Engineering/ Decompilation by Mocha
Obfuscation Tools: Jmangle
Cinnabar Canner
Byte Code Verifier
Class Loader
Building a SimpleClassLoader
Security Manager
jarsigner – JAR Signing and Verification Tool
Signing an Applet Using RSA-Signed Certificates
Signing Tools
Getting RSA Certificates
Bundling Java Applets as JAR Files
Signing Java Applets Using Jarsigner
Signing Java Applets Using Netscape Signing Tool
Security Extensions
Java Authentication and Authorization Service (JAAS)
Java Cryptographic Extension (JCE)
Java Cryptography Architecture
JCE: Pseudo Code for Encryption
JCE: Pseudo Code for Decryption
Sample Code for Encryption and Decryption
Java(TM) Secure Socket Extension (JSSE)
Creating Secure Client Sockets
Creating Secure Server Sockets
Choosing the Cipher Suites
Java GSS Security
Code for GSS Server
Code for GSS Client
Problem of Untrusted User Input
Security From Untrusted User Input
Cross Site Scripting
Overcoming Cross Site Scripting Problem
Permissions in Java
How to create new types of permissions?
Security Policy
Specifying an additional Policy File at runtime
Policy Tool
Policy Tool: Creating a new Policy File
Best practices for developing secure Java Code
Summary

Module VII: Secure Java Script and VB Script Programming

Script: Introduction
JavaScript Vulnerability
Cross-Site Scripting (XSS)
How to Avoid XSS?
JavaScript Hijacking
Defending Against JavaScript Hijacking
Decline Malicious Requests
Prevent Direct Execution of the JavaScript Response
Malicious Script Embedded in Client Web Requests
Malicious Script Embedded in Client Web Requests: Impacts
Malicious Script Embedded in Client Web Requests: Solution
Tool: Thicket Obfuscator for JavaScript
JavaScript Security in Mozilla
JavaScript Security in Mozilla: Same Origin Policy
Same Origin Check
JavaScript Security in Mozilla: Signed Script Policy
Netscape’s SignTool
Netscape’s SignTool: Signing a File
Privileges
Tool for Encryption: TagsLock Pro
JavaScript Shell (Jash): Javascript Command-Line Debugging Tool
Tool: Script Encoder
Tool: Scrambler
VBScript: CryptoAPI Tools
Signing A Script (Windows Script Host )
Verifying a Script
Signature Verification Policy
Software Restriction Policies for Windows XP
Step-by-Step Guide for Designing a Software Restriction Policy
Step-by-Step Guide for Creating Additional Rules
Rule for Blocking Malicious Scripts
Summary

Module VIII: Secure ASP Programming

ASP- Introduction
ASP Design Problems
Improving ASP Design
Using Server-Side Includes
Using Server-Side Includes: Example
Using Server-Side Includes: Protecting the Contents of Include Files
Taking Advantage of VBScript Classes
Using Server.Execute
Using Server.Transfer
#include Directive
.BAK Files on the Server
Programming Errors
Detecting Exceptions with Scripting Language Error-Handling Mechanisms
Using VBScript to Detect an Error
Using Jscript to Detect an Error
Notifying the Support Team When an Error Occurs Using CheckForError
Attacks on ASP
ASP DypsAntiSpam: A CAPTCHA for ASP
How To Prevent Automatic Submission With DypsAntiSpam
CAPTCHA: Examples
How to Use Database and ASP Sessions to Implement ASP Security
Step 1: Create A User Database Table
Step 2: Create And Configure The Virtual Directory
Step 3: Create The Sample Pages
Step 4: Add Validation Code To Pages
Protecting Your ASP Pages
Encoding ASP Code: Script Encoder
Protecting Passwords of ASP Pages with a One-way Hash Function
ASP Best Practices
ASP Best Practices: Error Handling
Summary

Module IX: Secure Microsoft.NET Programming

Microsoft .NET: IntroductionCommon Terminology
.NET FrameworkMicrosoft .NET: Introduction
.NET Framework
.NET Framework Security Policy Model
Security Policy Levels
Security Features in .NET
Key Concepts in .NET Security
Code Access Security (CAS)
Evidence-Based Security
Role-Based Security
Role-Based Security: Windows Principal
Role-Based Security: Generic principal
Declarative and Imperative Security
Cryptography
Generate Key for Encryption and Decryption
Symmetric Encryption in .Net
Asymmetric Encryption in .Net
Symmetric Decryption in .Net
Asymmetric Decryption in .Net
Protecting Client and Server Data Using Encryption
Cryptographic Signatures
Write a Signature in .Net
Verify a Signature in .Net
Ensuring Data Integrity with Hash Codes
Hash Code Generation
Verification of Hash Code
Permissions
Code Access Permissions
Identity Permissions
Role-Based Security Permissions
SkipVerification
Stack Walk
Writing Secure Class Libraries
Runtime Security Policy
Step-By-Step Configuration of Runtime Security Policies
Creating a Security Policy Deployment Package
Type Safety
Canonicalization
Access Control List Editor
Securing User Credentials and Logon Information
Obfuscation
Dotfuscator: .NET Obfuscator Tool
Administration Tool: Authorization Manager (AzMan) with ASP.Net
ASP.NET Security Architecture
Authentication and Authorization Strategies
URL Authorization
File Authorization
Windows Authentication
Forms Authentication
Passport Authentication
Custom Authentication
Implementing Custom Authentication Scheme
Configuring Security with Mscorcfg.msc
Process Identity for ASP.NET
Impersonation
Impersonation Sample Code
Secure Communication
Storing Secrets
Options for Storing Secrets in ASP.NET
Securing Session and View State
Web Form Considerations
Securing Web Services
Secure Remoting
Create a Remotable Object
Secure Data Access
.NET Security Tools
Code Access Security Policy Tool
Caspol.exe
Caspol.exe Parameters
Certificate Creation Tool: Makecert.exe
Options in Makecert.exe
Certificate Manager Tool: Certmgr.exe
Certificate Verification Tool: Chktrust.exe
Permissions View Tool: Permview.exe
PEVerify Tool: Peverify.exe
Best Practices for .NET Security
Summary

Module X: Secure PHP Programming

Introduction to PHP (Hypertext Preprocessor)
PHP Security Blunders
Unvalidated Input Errors
Solution for Access Control Flaws
Solution for Session ID Protection
Error Reporting
Data Handling Errors
Security Sensitive PHP Functions:
File Functions
Security Sensitive PHP Functions: ezmlm_hash
PHP Vulnerabilities
Informational Vulnerabilities
Common File Name Vulnerability
Revealed Source Code Vulnerability
Revealing Error Message Vulnerability
Sensitive Data in Web Root Vulnerability
Session File in Shared Server Vulnerability
Sensitive Data in Globally Readable File Vulnerability
Revealing HTML Comment Vulnerability
Web Application Fingerprint Vulnerability
Packet Sniffing Vulnerability
Attack Vulnerabilities
Global Variable Vulnerability
Default Password Vulnerability
Online Backup Vulnerability
Common PHP Attacks
Remote Code Execution
Cross-Site Scripting Attack (CSS)
Cross Site Scripting Attack: Example
Cross-Site Request Forgeries (CSRF, Sea-Surf or XSRF)
Workaround for Cross-Site Request Forgeries
SQL Injection
Defending SQL Injection Attacks
PHP Configuration Attacks
Preventing PHP Configuration Attacks
File System Attacks
Defending File System Attacks
Information Gathering Attacks
PHP Injection Attacks
Secure PHP Practices:
Safe Mode
Disable Register Globals
Validating Input
PHP Input Filter Class
Best Practices for PHP Security
Acunetix Web Vulnerability Scanner
Encryption Software: PHP Code Lock
Zend Guard
POBS stands for PHP Obfuscator/Obscurer
Summary

Module XI: Secure PERL Programming

Common Terminology
Introduction: Practical Extraction and Report Language (PERL)
Security Issues in Perl Scripts
Basic User Input Vulnerabilities
Overcoming Basic User Input Vulnerabilities
Insecure Environmental Variables
Algorithmic Complexity Attacks
Perl: Taint, Strict, and Warnings
Taint Mode
How Does Taint Mode Work?
Taint Checking
Using Tainted Data
Securing the Program Using Taint
Strict Pragma
Setuid
Setuid Sample Code
Setuid: Authenticating the user
Security bug with Setuid
The Perl crypt() Function
Logging Into a Secure Web Site with Perl Script
Secure Log-in Checklist
Program for Secure Log-in
Securing open() Function
Unicodes
Displaying Unicode As Text
Summary

Module XII: Secure XML, Web Services and AJAX Programming

Web Application and Web Services
Web Application Vulnerabilities
Coding Errors
Design Flaws
XML- Introduction
XSLT and XPath
XML Signature
Applying XML Signatures to Security
An Enveloped, Enveloping and Detached XML Signature Simultaneously
XML Encryption
The abstract Element
Security Considerations for the XML Encryption Syntax
Canonicalization
Validation Process in XML
XML Web Services Security
XML-aware Network Devices Expand Network Layer Security
Security of URI in XML
Security of Opaque Data in XML
Growth of XML as Percentage of Network Traffic
XML Web Services Security Best Practices
XML Security Tools
V-Sentry
Vordel SOAPbox
AJAX- Introduction
Anatomy of an AJAX Interaction (Input Validation Example)
AJAX: Security Issues
How to Prevent AJAX Exploits
Tool: HTML Guardian ™
Tool: Sprajax- AJAX Security Scanner
Tool: DevInspect
Summary

Module XIII: Secure RPC, ActiveX and DCOM Programming

RPC Introduction
RPC Authentication
RPC Authentication Protocol
NULL Authentication
UNIX Authentication
Data Encryption Standard (DES) Authentication
Data Encryption Standard (DES) Authentication on Server Side
Diffie-Hellman Encryption
Security Methods
Security Support Provider Interface (SSPI)
Security Support Providers (SSPs)
Writing an Authenticated SSPI Client
Writing an Authenticated SSPI Server
Secure RPC Protocol
RpcServerRegisterAuthInfo Prevents Unauthorized Users from Calling your Server
RPC Programming Best Practices
Make RPC Function Calls
Making RPC Function Calls: Using Binding Handles
Making RPC Function Calls: Choose the Type of Binding Handles and Choose a Protocol Sequence
Use Context Handles
Deal of RPC With Network
Write a Secure RPC Client or Server
ActiveX Programming: Introduction
Preventing Repurposing
SiteLock Template
IObjectSafety Interface
Code Signing
How to Create Your Own Code Signing Certificate and Sign an ActiveX Component in Windows
Protecting ActiveX Controls
DCOM: Introduction
Security in DCOM
Application-Level Security
Security by Configuration
Programmatic Security
Run As a Launching user
Run As a Interactive User
Run As a Specific User
Security Problem on the Internet
Security on the Internet
Heap Overflow Vulnerability
Workarounds for Heap Overflow Vulnerability
Tool: DCOMbobulator
DCOM Security Best Practices
Summary