In this hands-on training, apart from getting a quick understanding of common security vulnerabilities found in web applications, you will also learn how to utilize freely available tools and techniques to write beginner and business-friendly automation test cases and to maximize your efficiency as an application pentester. Some of the useful tools that you will learn how to use to your advantage include Robot Framework, Selenium, Burp Suite, Docker, etc. The focus would be mostly on how to leverage the Robot Framework in local and Dockerized environments.
Training level: Intermediate; Basic
DAY-1: General Understanding of Security Testing Approach
DAY-2: All About Robot Framework
DAY-3: Leveraging Docker and Selenium
DAY-4: Customizations & Extensions
What to bring:
* Should not be scared of Linux, Docker, Selenium, Burp Suite, Python, and/or Robot Framework
* Should have an open mind and a willingness to learn new things
Who should attend?:
What to expect?:
What attendees will get:
What not to expect?:
Do not expect this training to be all about finding security vulnerabilities alone. This training is about learning techniques that could be used during security assessments to improve your overall test efficiency and coverage.
Riddhi Shree is a Security Analyst Consultant with experience in Web and mobile app security testing, test automation, functional testing, network pen testing, website development, mobile app development, and agile project management. She is a passionate learner. She enjoys creating CTF challenges and hosting CTF events. She is an active leader of the Winja community (an open community for security enthusiasts). She has developed an intentionally vulnerable cloud-based Android application, called "VyAPI". She has given multiple technical talks and training in various security conferences including Nullcon, c0c0n, Hack-In-The-Box (HITB), ISC2, BSides.