Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.
7 ways to upskill &
transform yourself
into a security tester
SANTHOSH TUPPAD
E H , E , W , P F , C
LET’S BEGIN
WITH MY
JOURNEY INTO
SECURITY
TESTING.
DEMYSTIFYING
THE MYTHS!
MYTHS...
● HACKING IS NOT EASY OR DIFFICULT, BUT CHALLENGING
● HACKING IS BAD
● HACKING IS ABOUT TOOLS
● I WANT TO BECOME ...
LAST, BUT NOT LEAST!
A /
.
WHY DO WE NEED TO
UPSKILL?
● Massive skill shortage.
● Scanners and automated checkers aren’t sufficient.
● To make this i...
#1
KNOW THE HISTORY TO
SOLVE THE MYSTERY
#2
CHEAT WITH CHEAT
SHEETS
#3
SOCIAL ENGINEERING
SKILLS
#4
THINK LIKE A CRIMINAL
#5
IDENTIFY
VULNERABILITIES BY
QUESTIONING
#6
TALK TO (EX) BLACK-HAT
COMMUNITY MEMBERS
#7
READ MORE, WATCH
MORE, PRACTICE MORE,
PARTICIPATE MORE.
The
Demonstration
PRACTICE WEBSITES
● https://google-gruyere.appspot.com/
● http://hackthissite.org/
● OWASP JUICE SHOP
● OWASP WEBGOAT
● ht...
THANK YOU
T f
. I f
f
f
.
MY CONTACT
T : @
E : S .T @ .
S : . .
7 ways to up-skill & transform yourself into a security tester
7 ways to up-skill & transform yourself into a security tester
7 ways to up-skill & transform yourself into a security tester
Prochain SlideShare
Chargement dans…5
×

7 ways to up-skill & transform yourself into a security tester

Upskilling requires unlearning followed by learning attitude for any individual. And also before transforming to anything, one needs to understand the importance in terms of “Why should I be upskilling and why should I care?”

(This was a webinar for Software Test Pro) Santhosh Tuppad (the presenter) is going to speak about various ways through which the audience can understand the importance of security testing for web applications and also how to contribute by performing security tests even without a prior experience. Santhosh will speak about history, present and the future of “Security” through this webinar.

In a nutshell, the audience will hear Santhosh speak about security risks, how anyone who is new to security testing can kickstart and start thinking from “security” perspective including “How”, “Why”, “Where”, “What”, “When” questions.

  • Soyez le premier à commenter

7 ways to up-skill & transform yourself into a security tester

  1. 1. 7 ways to upskill & transform yourself into a security tester SANTHOSH TUPPAD E H , E , W , P F , C
  2. 2. LET’S BEGIN WITH MY JOURNEY INTO SECURITY TESTING.
  3. 3. DEMYSTIFYING THE MYTHS!
  4. 4. MYTHS... ● HACKING IS NOT EASY OR DIFFICULT, BUT CHALLENGING ● HACKING IS BAD ● HACKING IS ABOUT TOOLS ● I WANT TO BECOME HACKER LIKE IN THE MOVIES ● SECURITY TESTING CAN BE AUTOMATED ● COMPLIANCE CERTIFIED != SECURE SOFTWARE ● WE ARE IN THE SAFE INTERNET SOCIETY!
  5. 5. LAST, BUT NOT LEAST! A / .
  6. 6. WHY DO WE NEED TO UPSKILL? ● Massive skill shortage. ● Scanners and automated checkers aren’t sufficient. ● To make this internet society a better place to live in. SOME QUICK FACTS BEFORE WE SPEAK ON “HOW?”
  7. 7. #1 KNOW THE HISTORY TO SOLVE THE MYSTERY
  8. 8. #2 CHEAT WITH CHEAT SHEETS
  9. 9. #3 SOCIAL ENGINEERING SKILLS
  10. 10. #4 THINK LIKE A CRIMINAL
  11. 11. #5 IDENTIFY VULNERABILITIES BY QUESTIONING
  12. 12. #6 TALK TO (EX) BLACK-HAT COMMUNITY MEMBERS
  13. 13. #7 READ MORE, WATCH MORE, PRACTICE MORE, PARTICIPATE MORE.
  14. 14. The Demonstration
  15. 15. PRACTICE WEBSITES ● https://google-gruyere.appspot.com/ ● http://hackthissite.org/ ● OWASP JUICE SHOP ● OWASP WEBGOAT ● https://www.mcafee.com/us/downloads/free-tools/hacme-bank.aspx RECOMMENDED READING ● READING OWASP Website is the great source to read and learn ● Hacking for Dummies by Kevin Beaver (A Book) ● GHOST in the WIRES by Kevin Mitnick RECOMMENDED WATCHING ● BLACK MIRROR (SERIES) ● MR. ROBOT (SERIES) ● SWORDFISH (MOVIE) ● SNOWDEN (MOVIE)
  16. 16. THANK YOU T f . I f f f .
  17. 17. MY CONTACT T : @ E : S .T @ . S : . .

×