In association with
4th Annual BSides Tampa
Information Security Conference
Learning How to BurpSuite: Web App Pen Testing
Friday, February 10, 2017
South University
4401 North Himes Avenue Suite 175, Tampa, FL 33614
8:00 AM till 5:00 PM
Want to increase your techniques for attacking web applications and web services? Do you want to go beyond using BurpSuite for just request and response interception? This class is designed to expand your knowledge of the BurpSuite tool in order to hone your web pen testing skills. If you are currently in IT or Information Security and wish to learn more about attacking web applications or you wish to learn more about BurpSuite, then this class is designed for you.
Technical Requirements
======================
* Laptop with at least two (2) USB ports.
* Latest VirtualBox installed.
* At least twenty (20) GB of hard drive space.
* At least four (4) GB of RAM.
Agenda:
======================
BurpSuite Techniques and Tips:
* Spidering
* Automated Discovery
* Manual Discovery
* Exploitation
* Extenders
* Finding Weakness Indicators
* Post-Exploitation
* Integrating BurpSuite with other pen testing tools
Instructor Bio:
======================
Sunny Wear, CISSP, GWAPT, GSSP-JAVA, CEH, CSSLP is an Application Security Architect and developer. Her breadth of experience includes network, data, application and security architecture as well as programming across multiple languages and platforms. In her 20 years of professional experience, she has participated in the design and creation of many enterprise applications as well as the security testing aspects of platforms and services.
She is the author of several security-related books including her most recent entitled Secure Coding Field Manual: A Programmer's Guide to OWASP Top 10 and CWE/SANS Top 25 (http://www.amazon.com/SCFM-Secure-Coding-Manual-Programmers/dp/1508929572) which assists programmers in more easily finding mitigations to commonly-identified vulnerabilities within applications. She conducts security talks and classes locally and at conferences like BSides Tampa and AtlSecCon.
Twitter: @SunnyWear