EC-Council Certified Secure Programmer

More documents

Recommendations

Info

Page 28• Application Configurations to Attach to Applications Running in a Virtual Machineo Steps to Create, Duplicate, or Edit a Configuration that Attaches to a Running Applicationin a Virtual Machineo Steps to Delete Configurationso Running and Debugging Applications in Virtual Machineso Steps to Start an Application Debugging Session in a Virtual Machineo Steps to Start an Application in a Virtual Machine Without Debuggingo Steps to Attach the Debugger to an Application Running in a Virtual Machine• Visual Studio Integrated Virtual Debuggero Overviewo Configuration Options When Starting an Application in a Virtual Machineo Configuration Options When Attaching to a Process Running in a Virtual Machineo Setting Up the Visual Studio Integrated Virtual Debugger Environment• Managing Virtual Machine Configurationso Creating Configurationso Setting Configuration Propertieso Setting Virtual Machine Propertieso Running and Debugging Applications in Virtual Machineso Starting a Debugging Session in a Virtual Machineo Starting a Session Without Debugging in a Virtual Machineo Attaching the Debugger to a Process Running in a Virtual MachineModule 15: Writing Secure Documentation and Error Messages• Error Message• Common Error Messages• Error Messages: Categories• Good Error Message• Error Message in a Well-designed Applicationhttp://www.eccouncil.orgEC-Council
• Good Error Message Example• Miscommunication in Error Messages• Error Message Usability Checklist• Guidelines For Creating Effective Error Messages• Best Practices while Designing Error Messages• Error Messages: Examples• Security Issues in an Error Message• Security Precautions in DocumentationPage 29Module 16: Secure ASP Programming• ASP- Introduction• Improving ASP Design• Using Server-Side Includes(SSI)o Using Server Side Includes (SSI) with ASPo Using Server-Side Includes: Exampleo Using Server-Side Includes: Protecting the Contents of Include Files• Taking Advantage of VBScript Classes• Using Server.Execute• Using Server.Transfer• #include Directive• .BAK Files on the Server• Detecting Exceptions with Scripting Language Error-Handling Mechanisms• Using VBScript to Detect an Error• Using Jscript to Detect an Error• Notifying the Support Team When an Error Occurs Using CheckForError• Attacks on ASP• Insufficient Validation of Fields in SQL queries• ASP DypsAntiSpam: A CAPTCHA for ASPhttp://www.eccouncil.orgEC-Council
Page 1 and 2: Page 1EC-Council CertifiedSecure Pr
Page 3: Course DescriptionEC-Council Certif
Page 8 and 9: • Microsoft SDL Threat Modeling T
Page 11 and 12: • Countermeasure against Buffer O
Page 13 and 14: • Using Variable Arguments Proper
Page 15 and 16: o Code for GSS Client• Java Serve
Page 17 and 18: • .NET Frameworko .NET Framework
Page 19: o Design Considerationso Applicatio
Page 22 and 23: Page 22o Web Application Fingerprin
Page 24 and 25: Page 24• SQL Server Security Mode
Page 26 and 27: Page 26• SQL Server 2005o Step 1:
Page 30 and 31: Page 30• Preventing Automatic Sub
Page 32 and 33: • Validation Process in XML• XM
Page 34 and 35: • Preventing Repurposing• SiteL
Page 36 and 37: Page 36• Authorization Controls
Page 38 and 39: Page 38Module 22: Secure Xcode Prog
Page 40 and 41: Page 40• Obfuscation Sample Code
Page 42 and 43: Page 42• Starting a Winsock 2 API
Page 44 and 45: Page 44• The Bind System Call•
Page 46 and 47: Page 46• Figures: Fake Chunk, Ove
Page 48 and 49: Page 48• The wiretap Library• A
Page 50 and 51: Page 50• Security and Trust Servi
Page 52 and 53: Page 52• SSL Certificates• Veri
Page 54 and 55: • Avoiding unvalidated redirects

EC-Council Certified Secure Programmer

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?