Certified Java and Web application security Training in Germany

  • Learn via: Classroom / Virtual Classroom / Online
  • Duration: 3 Days
  • Level: Intermediate
  • Price: From €5,421+VAT

This comprehensive three-day course equips Java developers with the skills to secure their web applications against common vulnerabilities and advanced threats. Participants will explore core IT security principles, secure coding practices, and specific Java security measures, focusing on vulnerabilities such as SQL injection, cross-site scripting (XSS), authentication flaws, and race conditions.

The course also includes an in-depth analysis of the Java runtime environment, frameworks like Spring, and emerging security issues such as Log4Shell and Spring2Shell. Practical exercises are integrated throughout to ensure hands-on learning and the application of secure coding techniques.

Read more +
We can host this training at your preferred location.

Prerequisites

  • General Java development knowledge.
  • Familiarity with web application concepts is beneficial but not mandatory.

Target Audience

  • Java developers building or maintaining web applications.
  • Software engineers seeking to enhance their knowledge of secure coding.
  • IT professionals responsible for application security in Java-based systems.
Read more +

What You Will Learn

By the end of this course, participants will be able to:

  • Identify and mitigate common web vulnerabilities affecting Java applications, including OWASP Top Ten issues.
  • Implement secure coding practices to prevent injection attacks, XSS, and race conditions.
  • Utilise the security features of Java frameworks, such as Spring Security.
  • Strengthen authentication, session management, and authorisation processes in web applications.
  • Conduct vulnerability assessments using tools like static code analysis and penetration testing frameworks.
  • Apply principles of secure coding and understand key security guidelines from standards like SEI CERT and OWASP.
Read more +

Outline

Day 1: Introduction to IT security and secure coding

  • Fundamentals of IT security and risk management.
  • The nature of security flaws and their exploitation in cybercrime.
  • Overview of SEI CERT Oracle Coding Standards and OWASP Top Ten vulnerabilities.
  • Injections:
    • SQL Injection: Attack methods, blind SQL injection, and prevention using prepared statements.
    • OS Command Injection: Detection, prevention techniques, and practical exercises.
    • XML Injection: Understanding and addressing injection risks.
  • Cross-Site Scripting (XSS): Persistent, reflected, and DOM-based XSS attacks with prevention strategies and exercises.

Day 2: Advanced web vulnerabilities and secure coding

  • Authentication and Session Management:
    • Best practices for implementing secure authentication.
    • Common vulnerabilities in session handling (cookies, JWT tokens).
    • Exercises focusing on securing authentication and sessions.
  • Business Logic Vulnerabilities:
  • Identification and prevention of issues like shopping cart manipulation and discount abuse.
  • Exercises to spot and mitigate vulnerabilities.
  • Techniques to secure forms and session tokens against CSRF attacks.
  • Path traversal and file upload vulnerabilities with secure coding practices.
  • Practical exercises on detecting and preventing these flaws.
  • Understanding and mitigating race conditions in multi-threaded environments.
  • Cross-Site Request Forgery (CSRF):
  • File and Path Vulnerabilities:
  • Race Conditions:

Day 3: Java platform and Spring security

  • Java Security:
    • Core language security features, including type safety, memory management, and bytecode verification.
    • Addressing serialization and deserialization vulnerabilities.
    • Mitigation of issues like Log4Shell and improper error handling.
  • Spring Security:
  • Inversion of Control and Aspect-Oriented Programming for security.
  • Addressing vulnerabilities like EL injection and Spring2Shell.
  • Practical exercises on securing endpoints and managing authorisation.
  • Tools and techniques for static code analysis, penetration testing, and vulnerability management.
  • Exercises with tools like Burp Suite, OWASP ZAP, and SQLMap.
  • Applying robust programming principles from Saltzer and Schroeder.
  • Recommended resources and further reading for secure coding.
  • Security Testing and Vulnerability Management:
  • Principles of Secure Coding:

Exams and assessments

  • Multiple-choice exam (60 questions, 50% pass mark).
  • The APMG Proctor-U exam is taken online after course completion.
  • Delegates receive individual access to the APMG candidate portal (available two weeks post-exam).

Read more +

Training Reviews



Contact us for more detail about our trainings and for all other enquiries!

Avaible Training Dates

Join our public courses in our Germany facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

06 April 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
22 April 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
26 April 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
07 Mai 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
08 Mai 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
13 Mai 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
16 Mai 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT
20 Mai 2025 (3 Days)
Berlin, Hamburg, Münih
Classroom / Virtual Classroom
€5,421 +VAT

Related Trainings

Certified Java and Web application security Training Course in Germany

The Federal Republic of Germany is the second most populous country in Europe and is located in Central Europe. The official language of the country is German. Germany is one of the richest countries in the world. The main exports of the country include motor vehicles and iron and steel products.

Here are some fun facts about Germany:
The fairy tale writer, the Brothers Grimm, came from Germany and wrote many famous stories such as Cinderella, Snow White, and Sleeping Beauty.
Germany is home to the largest theme park in Europe, the Europa-Park.
The famous composer Ludwig van Beethoven was born in Germany.
The Autobahn, the German highway system, is known for having no general speed limit.


Berlin was divided by the Berlin Wall from 1961 to 1989. Known for its street art, Berlin has many colorful murals and graffiti throughout the city. Also, Berlin is home to many famous museums, such as the Pergamon Museum and the Museum Island. Many clubs and bars stay open until the early hours of the morning in this big city.

Another popular city is Munich, which is famous for its Oktoberfest beer festival that attracts millions of visitors every year. Munich is also home to many historic buildings, including Nymphenburg Palace and the Marienplatz town square.

The country's capital and largest city is Berlin, however Frankfurt is considered to be the business and financial center of Germany. It is home to the Frankfurt Stock Exchange, the European Central Bank, and many other financial institutions. Because of its central location within Europe and its status as a major financial hub, Frankfurt is often referred to as the "Mainhattan," a play on the city's name and its association with the Manhattan financial district in New York City.

Frankfurt is also a major transportation hub, with the largest airport in Germany and one of the largest in Europe, Frankfurt Airport. Additionally, it is a popular destination for tourists, with its historic city center, beautiful parks, and vibrant cultural scene.

Some of the top German technology companies like Siemens AG, Bosch, SAP SE, Deutsche Telekom, Daimler AG and Volkswagen has business centers in Frankfurt. The country has a strong tradition of engineering and innovation, and is home to many other world-class technology companies and research institutions.

Tailored to meet the specific needs of Germany, Bilginç IT Academy combines cutting-edge training methodologies with our comprehensive range of Certification Exam preparation courses and accredited corporate training programs. Experience a transformative approach to IT training that will redefine your expectations.
By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.