OWASP Top 10: #9 Components with Known Vulnerabilities and #10 Insufficient Logging and Monitoring

OWASP Top 10: #9 Components with Known Vulnerabilities and #10 Insufficient Logging and Monitoring
OWASP Top 10: #9 Components with Known Vulnerabilities and #10 Insufficient Logging and Monitoring
English | MP4 | AVC 1280×720 | AAC 48KHz 2ch | 0h 27m | 207 MB

The Open Web Application Security Project (OWASP) was formed to provide the public with the resources needed to understand and enhance software security. The OWASP Top 10 list describes the ten biggest vulnerabilities. In this course, Caroline Wong takes a deep dive into the ninth and tenth categories of security vulnerabilities in the OWASP Top 10: using components with known vulnerabilities and insufficient logging and monitoring. Caroline covers how these threats work, providing real-world examples that demonstrate how insufficient logging and monitoring and using components with known vulnerabilities can affect companies and consumers alike. She also shares techniques that can help you prevent attacks stemming from these issues.

Table of Contents

1 Prevent common software vulnerabilities
2 General concept
3 Example scenario 1
4 Example scenario 2
5 Continuously inventory and monitor
6 Apply virtual patches
7 General concept
8 Example scenario 1
9 Example scenario 2
10 Ensure logs have sufficient user context
11 Ensure timely detection and response
12 Establish an incident response plan
13 Next steps