Claim your FREE 7-day trial

Software Vulnerabilities and Security Controls

In this course, we take you through the fundamentals of software vulnerabilities and security controls.

4 videos  //  37 minutes of training

Course description

Before you can close the gaps in your security, you need to know where those gaps are first. This course will help you refresh your knowledge of software vulnerabilities and security controls, beginning with identifying general application vulnerabilities (such as insecure direct object references, integer and buffer overflows and resource exhaustion) before moving on to identifying Web application vulnerabilities, application security design and implementing application security controls. Includes vocabulary and guidelines.

Course syllabus

Identify General Application VulnerabilitiesDuration: 10:12

Identify Web Application VulnerabilitiesDuration: 12:35

Application Security DesignDuration: 5:09

Implement Application Security ControlsDuration: 9:08

Meet the author

Infosec

LinkedIn

At Infosec, we believe knowledge is the most powerful tool in the fight against cybercrime. We help IT and security professionals advance their careers with a full regimen of certification and skills training. We also empower all employees with security awareness training to stay cybersecure at work and home. Driven by smart people wanting to do good, Infosec educates entire organizations on how to defend themselves from cybercrime. That’s what we do every day — equipping everyone with the latest security skills so the good guys win.

You're in good company

"Comparing Infosec to other vendors is like comparing apples to oranges. My instructor was hands-down the best I’ve had." 

James Coyle

FireEye, Inc.

"I knew Infosec could tell me what to expect on the exam and what topics to focus on most."

Julian Tang

Chief Information Officer

"I’ve taken five boot camps with Infosec and all my instructors have been great."

Jeffrey Coa

Information Security Systems Officer

Related learning paths

CompTIA CASP+
Learning Path
CompTIA CASP+

CompTIA CASP+

The CompTIA Advanced Security Practitioner (CASP+) certification path prepares your for CompTIA's most prestigious information security certification. You'll learn the skills required to conceptualize, design and engineer secure solutions across complex enterprise environments.

Cybersecurity Management
Learning Path
Cybersecurity Management

Cybersecurity Management

The Cybersecurity Management skill path teaches you governance and risk management related to cybersecurity. You'll learn about developing and managing a security program, enterprise security operations, incident management, compliance and more.

Cloud Security Architecture
Learning Path
Cloud Security Architecture

Cloud Security Architecture

The Cloud Security Architecture skill path teaches you enterprise security architecture concepts related to the cloud, including cloud infrastructure, data and application security.

Security Engineering
Learning Path
Security Engineering

Security Engineering

The Security Engineering skill path teaches you concepts related to security architecture and engineering, including technical integration of enterprise security, security design and implementation, secure maintenance and disposal, and more.

Security Architecture
Learning Path
Security Architecture

Security Architecture

The Security Architecture skill path teaches you enterprise security architecture concepts, including security architecture modeling, architecture for governance and compliance, infrastructure security and more.

Cybersecurity Administration
Learning Path
Cybersecurity Administration

Cybersecurity Administration

The Cybersecurity Administration skill path covers a variety of high-level tasks related to cybersecurity, including implementing identity and access management, understanding asset security, integrating enterprise security, performing assessments and more.

Plans and pricing

Personal

$299

Annually

Teams

$599 / license

Annually. Includes all content plus team admin and reporting.