Content Areas Assessed & Application Security Domains
SANS Assessments are delivered through a web-based tool. There are 30 questions and users have 60 minutes to complete the Assessment. Online reports summarize each user’s results in detail. Application Security Assessments are $150 each with a minimum purchase of 25 total assessments.
NOTE: The assessment will contain code samples in many languages including C, PHP, Java, .Net, and SQL. Primary platform aside, SANS believes a person specializing in application security should be able to spot core security flaws in any common language they are likely to encounter.
| Common Web Application Attacks
Current, working knowledge of the OWASP Top 10 and mitigation techniques | Application Security Domains The examinee will understand the details of common web application attacks. |
Web Application Architecture Security
| Web Application Architecture Security The examinee will understand web application architecture. |
Web Technologies and Services
| Web Technologies and Services
The examinee will understand web technologies and services including REST, Javascript, and AJAX |
Secure Coding Principles and Software Development Lifecycle
| Secure Coding Principles and Software Development Lifecycle The examinee will understand secure coding principles and the software development lifecycle. |
Secure Coding Practice
| Secure Coding Practice The candidate will understand the practice of secure coding including Input Validation, Session Management, Access Control, and Authentication. |