Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
WAF BASICS- Part1
Rating: 4.1 out of 5(586 ratings)
3,380 students

WAF BASICS- Part1

Application Security Manager Basics
Created byVineet Singh
Last updated 12/2020
English

What you'll learn

  • Candidates will gain knowledge on product solution- ASM

Course content

1 section11 lectures6h 54m total length
  • Application Traffic Flow49:40
  • Setting Up the BIG-IP1:00:07
  • Traffic Processing Components46:45
  • HTTP_Headers & OWASP_Top1044:19
  • Web_App_Vulnerabilities & Security Model28:33
  • Security_Policy_Deployment34:44

    Deploy security policies by selecting policy types (standalone or parent/child) and templates (rapid, fundamental, comprehensive, application-ready, vulnerability baseline, passive), using automatic or manual methods, with enforcement and learning modes.

  • Rapid_Policy_Deployment11:42
  • Data Guard13:15
  • Policy Tuning&Violations - Part 149:21
  • Policy Tuning&Violations - Part 228:56
  • Attack Signatures47:15

Requirements

  • VE, Fiddler, Web Server Image

Description

The  Application Security Manager course gives participants a  functional understanding of how to deploy, tune, and operate Application Security Manager (ASM) to protect their web applications  from HTTP-based attacks.

The course includes lecture, hands-on labs, and discussion about  different ASM components.

This course starts right from the fundamentals of application traffic flow and will help you understand how does  ASM behave to attacks and how can you start exploring ASM as a WAF product.

The course includes lecture, hands-on labs, and discussion about  different ASM components.

In this course we will be discussing below topics:

  1. Application Traffic Flow.

  2. Initial setup of BIG-IP

  3. Basic traffic processing components on F5

  4. HTTP header and explanation of OWASP Top 10

  5. Security Model

  6. Ways to deploy initial security policy on ASM.

  7. Tuning of your policy

  8. Attack Signatures


Who this course is for:

  • This course is intended for security and network administrators who will be responsible for the installation, deployment, tuning, and day-to-day maintenance of the Application Security Manager.