OpenCourser brand icon
Sign in
We may earn an affiliate commission when you visit our partners.
Pluralsight logo

Security Event Triage

Revealing Attacker Methodology in Web Application Events

Aaron Rosenmund

In this course on revealing web application attack methodology, you will explore the use of web application filters, app service logs, and web vulnerability scanners to reveal various advanced attacker techniques and detecting live web exploitations.

Read more

In this course on revealing web application attack methodology, you will explore the use of web application filters, app service logs, and web vulnerability scanners to reveal various advanced attacker techniques and detecting live web exploitations.

Developing the skills necessary for a security analyst to accurately detect and triage adversary tactics and techniques applied to web applications requires experience with web application's baseline behavior and the use of advanced detection capabilities. Neither of which are easy to obtain. In this course, Security Event Triage: Revealing Attacker Methodology in Web Application Events, you will gain the foundation knowledge and experience with web application technologies and attacker methodologies required to protect your vital business functions. First, you will monitor the front door of applications for common attacks with web application firewalls on-premises and on major cloud platforms. Next, you will learn the logic behind hunting for behavioral anomalies generated by more advanced attacker activity and how to create machine learning jobs to identify this behavior in an automated way. Finally, you will discover how to leverage the same tools the attackers use to actively spot holes in your applications that pop up as new builds are released and mitigate the associated risk. When you finish this course, you will have the skills and knowledge of web application attack detection needed to implement continuous monitoring capabilities that protect the enterprise applications on which your organization depends.

Enroll now

What's inside

Syllabus

Course Overview
Defending Against Web Application Attack Techniques
Detecting Attackers with Web Application Firewalls
Log Collection and Analyzing Application Behavior with Logs
Read more
Integrating Web Vulnerability Scanning Detections
Operationalizing Web Application Attack Detection

Good to know

Know what's good
, what to watch for
, and possible dealbreakers
Covers advanced attacker techniques in web applications, including behavioral anomalies and machine learning detection methods
Led by Aaron Rosenmund, an experienced instructor in web application security
Suitable for security analysts seeking specialized skills in detecting and triaging web application attacks
Provides hands-on experience with commonly used tools and technologies for web application security monitoring
Emphasizes practical skills and knowledge for protecting vital business functions from web attacks
May require prior knowledge of web application technologies and security concepts

Save this course

Save Security Event Triage: Revealing Attacker Methodology in Web Application Events to your list so you can find it easily later:
Save

Activities

Coming soon We're preparing activities for Security Event Triage: Revealing Attacker Methodology in Web Application Events. These are activities you can do either before, during, or after a course.

Career center

Learners who complete Security Event Triage: Revealing Attacker Methodology in Web Application Events will develop knowledge and skills that may be useful to these careers:
Vulnerability Manager
Vulnerability Managers are responsible for identifying, assessing, and mitigating vulnerabilities in software and systems. This course will be very useful for advancing your career as it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Vulnerability Manager
Web Application Security Engineer
Web Application Security Engineers are responsible for protecting web applications from vulnerabilities and attacks. This course will be very helpful for advancing your career as it can help you gain the knowledge and experience needed to identify and mitigate risks associated with web application.
See salaries and explore the career path for Web Application Security Engineer
Penetration Tester
Penetration Testers are responsible for identifying and exploiting vulnerabilities in computer systems and networks. This course will be very useful for advancing your career as it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Penetration Tester
Security Consultant
Security Consultants provide security advice and services to organizations. This course will be useful as it can help you gain the knowledge and experience needed to identify and mitigate risks associated with web application.
See salaries and explore the career path for Security Consultant
Incident Responder
Incident Responders are responsible for responding to and mitigating security incidents. This course will fit well with your role as it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Incident Responder
Security Analyst
In the role of Security Analyst, you will be responsible for investigating, preventing, and responding to security incidents. This course will be useful for advancing your career as it helps you build a foundation in detecting and triaging adversary tactics and techniques applied to web applications.
See salaries and explore the career path for Security Analyst
Security Software Engineer
Security Software Engineers design, develop, and maintain security software products and systems. This course will be helpful for a career in this field, as it will help you build a foundation in detecting and triaging adversary tactics and techniques applied to web applications.
See salaries and explore the career path for Security Software Engineer
Cloud Security Engineer
Cloud Security Engineers are responsible for securing cloud-based applications and services, and must be able to understand web application attack techniques and defenses. This course will fit well with your role as it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Cloud Security Engineer
Cybersecurity Analyst
Cybersecurity Analysts are responsible for analyzing and mitigating cybersecurity risks. This course will be helpful for advancing your career because it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Cybersecurity Analyst
Information Security Analyst
Information Security Analysts are responsible for protecting an organization's information assets, for this they must have a deep understanding of security, risk, and compliance. This course will be helpful for advancing your career because it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Information Security Analyst
Security Architect
Security Architects design and implement security measures to protect an organization's information assets. This course may be useful because it will help you build a foundation in detecting and triaging adversary tactics and techniques applied to web applications.
See salaries and explore the career path for Security Architect
Malware Analyst
Malware Analysts are responsible for analyzing and mitigating malware threats. This course may be useful because it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Malware Analyst
Forensic Analyst
Forensic Analysts are responsible for investigating and analyzing digital evidence. This course may be helpful for advancing your career because it covers advanced attacker techniques and detecting live web exploitations.
See salaries and explore the career path for Forensic Analyst
DevSecOps Engineer
DevSecOps Engineers are responsible for integrating security practices into the software development lifecycle. This course may be useful because it will help you build a foundation in detecting and triaging adversary tactics and techniques applied to web applications.
See salaries and explore the career path for DevSecOps Engineer
Risk Analyst
Risk Analysts are responsible for identifying, assessing, and mitigating risks to an organization. This course may be useful because it will help you build a foundation in detecting and triaging adversary tactics and techniques applied to web applications.
See salaries and explore the career path for Risk Analyst

Reading list

We've selected ten books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in Security Event Triage: Revealing Attacker Methodology in Web Application Events.
Cover image
CISO Survey and Report 2013
Save
This comprehensive guide is written by experts from the Open Web Application Security Project (OWASP) and covers web application security in depth. It includes sections on threat modeling, secure coding, and security testing.
CISO Survey and Report 2013
Paperback
Check
CISO Survey and Report 2013
Kindle Edition
Check
Cover image
The Art of Software Security Assessment
Save
Provides a comprehensive overview of software security testing. It covers topics like threat modeling, secure coding, and security testing. It good resource for security professionals who want to learn more about software security testing.
Art of Software Security Assessment, The:...
Kindle Edition
$$$
Cover image
The Hacker Playbook 3
Save
Provides a comprehensive overview of penetration testing principles and practices. It good resource for security professionals who want to learn more about how to test the security of systems.
The Hacker Playbook 3: Practical Guide To...
Paperback
$$
The Hacker Playbook 3: Practical Guide To...
Kindle Edition
$$
Cover image
Bruce Schneier on Trust Set
Save
Provides a comprehensive overview of the psychology of security. It good resource for security professionals who want to learn more about the human factors involved in security.
Bruce Schneier on Trust Set
Paperback
Check
Bruce Schneier on Trust Set
Kindle Edition
Check
Cover image
The Web Application Hacker's Handbook
Save
Provides a comprehensive overview of web application security vulnerabilities and how to exploit them. It valuable resource for security professionals who want to learn more about web application security testing.
The Web Application Hacker's Handbook: Finding and...
Paperback
$$
The Web Application Hacker's Handbook: Discovering...
Paperback
$$$
The Web Application Hacker's Handbook: Finding and...
Kindle Edition
$$
Cover image
Security Engineering
Save
Provides a comprehensive overview of security engineering principles and practices. It good resource for security professionals who want to learn more about designing and building secure systems.
Security Engineering: A Guide to Building...
Hardcover
$$
Personal Medical Information: Security, Engineering...
Kindle Edition
$$$
Security Engineering: A Guide to Building...
Paperback
$$$
Security Engineering, 2ed
Paperback
$$
Security Engineering and Tobias on Locks Two-Book...
Hardcover
$$$$
Security Engineering: A Guide to Building (text...
Unknown Binding
$$$$
Cover image
PRAGMATIC Security Metrics
Save
Provides a comprehensive overview of software security principles and practices. It good resource for developers who want to learn more about writing secure code.
PRAGMATIC Security Metrics: Applying Metametrics to...
Kindle Edition
$$$$
Cover image
The Pragmatic Programmer
Save
Provides a comprehensive overview of software development best practices. It good resource for developers who want to learn more about writing high-quality code.
The Pragmatic Programmer: Your Journey To Mastery,...
Hardcover
$$
Pragmatic Programmer, The: From Journeyman to Master
Kindle Edition
$$
(Italiano) Pragmatic Programmer - Edizione del 20°...
Kindle Edition
$$
(Italiano) Il Pragmatic Programmer: Guida per manovali del...
Kindle Edition
$$
(中文) The Pragmatic Programmer: access to the highest...
Paperback
$$
Pragmatic programmer (Korean Edition)
Paperback
$$$
Cover image
Java Coding Guidelines
Save
Provides a comprehensive overview of secure coding principles and practices. It good resource for developers who want to learn more about writing secure code.
Java Coding Guidelines: 75 Recommendations for...
Kindle Edition
$$
Cover image
Seeking Security in an Insecure World
Save
Provides a framework for developing secure web applications. It covers topics like threat modeling, secure coding, and security testing. It good resource for developers who want to learn more about web application security.
Seeking Security in an Insecure World
Paperback
$$
Seeking Security in an Insecure World
Paperback
$$

Share

Help others find this course page by sharing it with your friends and followers:
Facebook
LinkedIn
Reddit
X
Link
Email

Similar courses

Here are nine courses similar to Security Event Triage: Revealing Attacker Methodology in Web Application Events.
Security Event Triage: Detecting System Anomalies
Most relevant
Security Event Triage: Statistical Baselining with SIEM...
Incident Response: Containment, Eradication and Recovery
Security Event Triage: Operationalizing Security Analysis
Security Event Triage: Detecting Network Anomalies with...
Secure Coding in Go
Secure Coding in Java
Advanced Java
Deception As a Defense
Course image
Time
129 hours
Level
Advanced
Via
Pluralsight
Instructor
Aaron Rosenmund
Language
English
Security Event Triage: Revealing Attacker Methodology in Web Application Events belongs to the following collections:
  1. Continuous Security Monitoring and Detection
  2. Security Event Triage
Good to know
Covers advanced attacker techniques in web applications, including behavioral anomalies and machine learning detection methods
Led by Aaron Rosenmund, an experienced instructor in web application security
Suitable for security analysts seeking specialized skills in detecting and triaging web application attacks
Provides hands-on experience with commonly used tools and technologies for web application security monitoring
Emphasizes practical skills and knowledge for protecting vital business functions from web attacks
May require prior knowledge of web application technologies and security concepts
Share and help others discover this course
Facebook LinkedIn X Reddit Link Email
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2024 OpenCourser