C++ Developer
Details 45 Courses, 20 Hours, 23 CPE Credits
Core
Provides learners with an understanding of security principles and best practices for developing secure applications. The learning path focuses on fundamentals of application security, application security risk management, common vulnerabilities in an application.
Courses Include
- AWA 101 Fundamentals of Application
Security - AWA 102 Secure Software Concepts
- COD 102-108 Fundamentals of SDLC Security Series (7)
- COD 262 Fundamentals of Shell and Interpreted Language Security
- ENG 205 Fundamentals of Threat Modeling
Advanced
Covers key concepts for creating secure C++ applications, implementing data protection techniques in C++ applications. It also covers key concepts of cryptography and enables developers to develop secure C++ code.
Courses Include
- COD 206-207, 307 Creating Secure C++ Code Series (3)
- COD 263 Secure Bash Scripting
- COD 264 Secure Perl Scripting
- COD 265 Secure Python Scripting
- COD 266 Secure Ruby Scripting
- DES 202-205 Fundamentals of Cryptography Series (4)
- TST 255 Testing for Missing Authentication for Critical Function
- TST 257 Testing for Use of Hard-Coded Credentials
- TST 259 Testing for Unrestricted Upload of File with Dangerous Type
- TST 261 Testing for Execution with Unnecessary Privileges
- TST 264 Testing for Download of Code Without Integrity Check
- TST 266 Testing for Inclusion of Functionality from Untrusted Control Sphere
- TST 267 Testing for Incorrect Permission Assignment for Critical Resource
- TST 268 Testing for Use of a Potentially Dangerous Function
- TST 271 Testing for Improper Restriction of Excessive Authentication Attempts
- TST 272 Testing for Open Redirect
- TST 273 Testing for Uncontrolled Format String
Elite
Provides learners with an understanding of secure architecture and design principles while articulating security requirements to be considered during the requirements phase. This path also introduces the learner to threat modeling to help identify security design problems early in the application security design process.
Developers will learn to define the attack surface of an application and how to reduce the risk to an application by minimizing the application’s attack surface, and guidelines for secure source code review.
Courses Include
- DES 101 Fundamentals of Secure Architecture
- DES 212 Architecture Risk Analysis and Remediation
- DES 311 Creating Secure Application Architecture
- ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
- ENG 211 How to Create Application Security Design Requirements
- ENG 311 Attack Surface Analysis & Reduction
- ENG 312 How to Perform a Security Code Review
Details 45 Courses, 20 Hours, 23 CPE Credits
Core
Provides learners with an understanding of security principles and best practices for developing secure applications. The learning path focuses on fundamentals of application security, application security risk management, common vulnerabilities in an application.
Courses Include
- AWA 101 Fundamentals of Application Security
- AWA 102 Secure Software Concepts
- COD 102-108 Fundamentals of SDLC Security Series (7)
- COD 262 Fundamentals of Shell and Interpreted Language Security
- ENG 205 Fundamentals of Threat Modeling
Advanced
Covers key concepts for creating secure C++ applications, implementing data protection techniques in C++ applications. It also covers key concepts of cryptography and enables developers to develop secure C++ code.
Courses Include
- COD 206-207, 307 Creating Secure C++ Code Series (3)
- COD 263 Secure Bash Scripting
- COD 264 Secure Perl Scripting
- COD 265 Secure Python Scripting
- COD 266 Secure Ruby Scripting
- DES 202-205 Fundamentals of Cryptography Series (4)
- TST 255 Testing for Missing Authentication for Critical Function
- TST 257 Testing for Use of Hard-Coded Credentials
- TST 259 Testing for Unrestricted Upload of File with Dangerous Type
- TST 261 Testing for Execution with Unnecessary Privileges
- TST 264 Testing for Download of Code Without Integrity Check
- TST 266 Testing for Inclusion of Functionality from Untrusted Control Sphere
- TST 267 Testing for Incorrect Permission Assignment for Critical Resource
- TST 268 Testing for Use of a Potentially Dangerous Function
- TST 271 Testing for Improper Restriction of Excessive Authentication Attempts
- TST 272 Testing for Open Redirect
- TST 273 Testing for Uncontrolled Format String
Elite
Provides learners with an understanding of secure architecture and design principles while articulating security requirements to be considered during the requirements phase. This path also introduces the learner to threat modeling to help identify security design problems early in the application security design process.
Developers will learn to define the attack surface of an application and how to reduce the risk to an application by minimizing the application’s attack surface, and guidelines for secure source code review.
Courses Include
- DES 101 Fundamentals of Secure Architecture
- DES 212 Architecture Risk Analysis and Remediation
- DES 311 Creating Secure Application Architecture
- ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
- ENG 211 How to Create Application Security Design Requirements
- ENG 311 Attack Surface Analysis & Reduction
- ENG 312 How to Perform a Security Code Review
