Course
Skills Expanded
CompTIA Security+ (SY0-401) Application, Data, and Host Security
CompTIA Security+ (2014 Objectives): Domain 4 - Application, Data, and Host Security.
What you'll learn
This course covers the material that comprises Domain 4.0 of the CompTIA Security+ SY0-401 certification exam. Topics include application security concepts such as fuzzing, cross-site scripting, cross-site request forgery, application and database hardening, device security, encryption, data-wiping, SCADA and embedded systems security, virtualization and cloud security concepts, mobile device security, and the various methods used to implement security best practices.
Table of contents
Application Security Controls and Techniques
31mins
- Fuzzing 5m
- Kali Linux and Pen Testing Tools 2m
- Secure Coding Concepts 5m
- Cross Site Scripting (XSS) and Cross Site Request Forgery (XSRF) 7m
- Application Baseline Configuration and Application Hardening 4m
- Multi-tiered Approach and Application Patching 3m
- SQL vs. NoSQL Databases 4m
- Server-side vs. Client-side Validation 2m
Mobile Security Concepts and Technologies
25mins
Establishing Host Security
28mins
Appropriate Controls to Ensure Data Security
22mins
Mitigate Security Risks in Static Environments
29mins
- Module Overview 1m
- SCADA Systems 7m
- Embedded Systems, Printers, Smart TVs, and HVAC 3m
- Mobile Operating Systems 3m
- Mainframes 2m
- Game Consoles 2m
- In-vehicle Computing Systems 2m
- Network Segmentation 3m
- Security Layers and Manual Updates 3m
- Firmware Version Control 2m
- Wrappers, Control Redundancy, and Diversity 2m
- Module Review 0m