Profile PictureMichael Levan
$19.97

AppSec: Hands-On, Real-World Labs

Add to cart

AppSec: Hands-On, Real-World Labs

$19.97

Whether you're working on:

  1. Kubernetes
  2. Web Apps
  3. Any backend code
  4. Automation/scripting

It all comes down to testing code and APIs (remember, Kubernetes is comprised of a bunch of APIs).

To secure code efficiently, whether it's static (with something like SAST), automatic/dynamic (with something like DAST), or a pentest approach to check for vulnerabilities, you need to understand what the codes security posture is before it gets to production.

This book will provide you with the hands-on practice that you need to secure any codebase and/or API in any environment with the most popular security tools and best practices.


THIS BOOK IS CURRENTLY IN PROGRESS and will be completed by September 30th, 2024. Get it now before prices go up!

What You’ll Get

  • Real World labs (20+).
  • A comprehensive hands-on lab book that you can enjoy at the comfort of your own speed.
  • Hands-on guidance with pentesting/hacking.
  • Defensive measures for all code and APIs.

Who Is This For?

This book is for anyone who wants to get right into hands-on, practical learning.

Outline

  1. Prerequisites: What You Need To Know
    1. The “why”
    2. Systems
    3. Networking
    4. Infrastructure and cloud
    5. Software
    6. Automation (IaC and Scripts)
    7. Kubernetes
  2. SAST
    1. SonarQube
    2. Veracode
    3. Snyk SAST
    4. GitHub Code Scanning
    5. Terrascan
  3. DAST
    1. Intruder
    2. HCL AppScan
    3. Veracode
  4. RASP
    1. Dynatrace
    2. Datadog Application Security Management
  5. Web App Testing
    1. OWASP
    2. BurpSuite
    3. Vulnerability Scanning with Metasploit WMAP
    4. Wpscan (WordPress Security Scanner)
    5. Whatweb
    6. ZAP
    7. Nikto
  6. Automation And Code Quality
    1. What Language to Choose?
      1. Python
      2. PowerShell
    2. Creating A Python Automation Tool
    3. Creating A PowerShell Automation Tool
    4. Problems In Code
      1. Gosec
      2. Bandit
      3. jshint
      4. jslint
    5. Software Composition Analysis (SCA)
  7. Container Security
    1. Snyc Containers
    2. Docker Scout
  8. Kubernetes Security
    1. Kubescape
    2. Aqua Security


See What People Are Saying About Michael Levan's Content


The Instructor, Michael Levan, Explained The Key Concepts Without Overwhelming Us. Good Pace And Well Done!


"I really found value in your content as compared to others. It is really helpful for people and your followers. Very much appropriate. Thank you for all of your efforts."


"Really like your content. Some of the best and most digestible Kubernetes content on LinkedIn"


"I really enjoyed reading your stuff and it helps to clarify some confusing topics. Thanks!"


Feel free to reach out with any questions.

Add to cart

50+ Real-World labs to guide you through what you need to know to penetrate and defend clouds, networks, infrastructure, and software.

Pages
Size
1.62 MB
Length
10 pages
Copy product URL