Application Security Testing and Debugging
6h 38mAdvanced2026-03-18
Authors

Starweaver
Course details
Prepare for the CompTIA Linux+ (XK0‑006) certification by building practical, job‑ready Linux skills from the ground up. Explore Linux fundamentals, distributions, and the filesystem hierarchy, then discover how to install, configure, and customize Linux systems. Learn about hardware management, storage technologies, networking, and essential shell tools. Find out how to manage users, services, and processes effectively. Dive into systemd, containers, virtualization, and backup strategies. Explore security concepts including authentication, hardening, firewalls, auditing, and compliance. Discover how to automate administrative tasks with Bash, Python, infrastructure as code, and version control, and learn how to troubleshoot common issues across hardware, storage, networking, performance, and security to confidently manage Linux systems in real‑world environments and succeed on the Linux+ exam.
Learning objectives
Describe the core concepts of Linux, including distributions, licensing, and the filesystem hierarchy.
Install and configure a Linux system using common tools and best practices.
Manage hardware devices, storage, filesystems, and kernel modules in Linux environments.
Apply essential networking concepts and utilities to configure and troubleshoot connectivity.
Use the Linux shell and core command-line tools to navigate, manipulate files, and automate tasks.
Administer users, groups, permissions, processes, packages, and services.
Configure system services using systemd and operate containerized workloads.
Implement Linux security controls, including authentication, authorization, hardening, and firewalls.
Develop automation and scripts using Bash, Python, infrastructure as code, and version control.
Troubleshoot Linux issues across hardware, storage, networking, performance, and security domains.
Learning objectives
Describe the core concepts of Linux, including distributions, licensing, and the filesystem hierarchy.
Install and configure a Linux system using common tools and best practices.
Manage hardware devices, storage, filesystems, and kernel modules in Linux environments.
Apply essential networking concepts and utilities to configure and troubleshoot connectivity.
Use the Linux shell and core command-line tools to navigate, manipulate files, and automate tasks.
Administer users, groups, permissions, processes, packages, and services.
Configure system services using systemd and operate containerized workloads.
Implement Linux security controls, including authentication, authorization, hardening, and firewalls.
Develop automation and scripts using Bash, Python, infrastructure as code, and version control.
Troubleshoot Linux issues across hardware, storage, networking, performance, and security domains.
Concepts
Application Security Fundamentals
- Introduction to the course
- Chapter introduction
- Intro to application security fundamentals
- Security testing in the SDLC
- OWASP Top 10 deep dive
Static Application Security Testing (SAST)
- SAST fundamentals and tool selection
- Hands-on SAST with SpotBugs
- SAST results analysis and CVSS scoring
Secure Code Review and Manual Analysis
- Manual security code review process
- OWASP code review tools workshop
- Security audit standards and compliance
Security Debugging Fundamentals
- Chapter introduction
- Systematic Debugging for security
- White-box debugging techniques
- Runtime security analysis
Vulnerability Discovery Through Debugging
- Authentication flow debugging
- Interactive debugging in web applications
- Advanced exploit analysis
Automated Security Integration
- DevSecOps pipeline integration
- CodeQL and advanced static analysis
- Security test automation architecture
Dynamic Application Security Testing (DAST)
- Chapter introduction
- DAST methodology and black-box testing
- ZAP professional workshop
- Hybrid testing - Automated and manual techniques
Penetration Testing Fundamentals
- Penetration testing methodology
- Burp suite professional techniques
- WebGoat exploitation laboratory
Advanced Exploitation Techniques
- Authentication and session security testing
- Business logic and race condition testing
- Injection attack mastery
Security Report Development
- Chapter introduction
- Executive security reporting
- CVSS scoring and risk quantification
- Remediation strategy development
Case Study Analysis
- OWASP code review tools workshop
- Enterprise penetration testing case study
- DevSecOps transformation case study
Professional Development and Best Practices
- ISTQB security testing standards
- Career development in security testing
- Building security culture
Related courses
- Advanced Practices in Application Security
- AWS Certified Developer - Associate (DVA-C02) Cert Prep
- Mastering Model Context Protocol (MCP)
- Security Testing Essential Training
- Dynamic Application Security Testing
- Dynamic Application Security Testing (DAST) (2019)
- Application Security in DevSecOps (2019)
- Static Application Security Testing (SAST) (2019)