OWASP Top 10: A9 - Using Components with Known Vulnerabilities
OWASP 2021
| Intermediate
- 6 videos | 30m 44s
- Includes Assessment
- Earns a Badge
Software developers often use existing third-party APIs and software components instead of recreating the wheel, so to speak. This reduces development time and time to market for software products. In this course, you'll learn that only trusted APIs and components should be used, that developers must truly understand how these items work, and that they must be kept up-to-date. Next, you'll learn about the Heartbleed Bug and how to view components in Microsoft Visual Studio. You'll then examine how security must apply to all aspects of Continuous Integration and Continuous Delivery. Lastly, you'll explore how to search the shodan.io web site for vulnerable devices and apps.
WHAT YOU WILL LEARN
-
discover the key concepts covered in this course
identify how software developers commonly use third-party APIs and components
describe how the Heartbleed Bug compromises older versions of OpenSSL -
recognize how security must be integrated into all aspects of Continuous Integration and Continuous Delivery (CI/CD)
browse vulnerable devices on the Shodan.io web site
summarize the key concepts covered in this course
IN THIS COURSE
-
1m 36s
-
6m 21s
-
3. Buffer Overflows6m 54s
-
4. Continuous Integration and Continuous Delivery Pipelines8m 2s
-
5. Viewing Vulnerable Devices Using Shodan.io6m 52s
-
6. Course Summary1m
EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE
Skillsoft is providing you the opportunity to earn a digital badge upon successful completion on some of our courses, which can be shared on any social network or business platform.
Digital badges are yours to keep, forever.
