OWASP Top 10: A8 - Insecure Deserialization
OWASP
| Intermediate
- 5 videos | 21m 4s
- Includes Assessment
- Earns a Badge
Object-oriented programming is common when writing scripts, as well as during software development. OOP treats items as objects that have properties and methods, as opposed to treating command output as a simple string. In this course, you'll learn about OOP along with some syntax examples. You'll explore how programming objects become serialized and deserialized and how this can present a security risk to web applications. Next, you'll examine how deserialization works in PowerShell, as well as how to execute a deserialization attack against an intentionally vulnerable web application. Lastly, you'll learn how to prevent deserialization attacks from succeeding.
WHAT YOU WILL LEARN
-
Discover the key concepts covered in this course
Describe how the concept of objects, methods, and properties applies to scripting and software development
Identify how deserialization attacks occur -
Recognize how to deploy security controls to mitigate deserialization attacks
Summarize the key concepts covered in this course
IN THIS COURSE
-
1m 40s
-
5m 48s
-
3. Insecure Deserialization Attacks7m 57s
-
4. Mitigating Insecure Deserialization Attacks4m 43s
-
5. Course Summary56s
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.
Digital badges are yours to keep, forever.
