F5 BIG-IP Application Security Manager (ASM) v11x

COURSE OUTLINE:

Description

In this course, you will learn how to manage web-based and XML application attacks and how to use Application Security Manager to defend against these attacks.

You will cover installation, configuration, management, security policy building, traffic learning, and implementation of Application Security Manager in both stand-alone and modular configurations.

Audience

Those who need to learn to use Application Security Manager to defend against attacks.

Prerequisites

Understanding of:

Basic HTTP and HTML concepts
Basic security concepts
Common network terminology
Web application terminology

Proficiency in:

Basic PC operation and application skills, including operating a CD drive, keyboard, mouse, and Windows OS
Basic web browser operation (Internet Explorer)

Learning Objectives

HTTP and HTML concepts
Common HTTP vulnerabilities
HTTP classes
Security policy building
Wildcard entities
Traffic learning
Parameter configuration and protection
Security policy templates
Web services protection
Protocol Security Manager configuration
Logging profiles
Install and understand web application configuration
Configure a security policy based on live traffic
Rapid deployment techniques
Monitor and administer Application Security Manager

1. Installation and Initial Access

BIG-IP
Licensing and the Setup Utility
Provisioning

2. Web Application Concepts

Web Application Basics
Web Page Components
HTTP Concepts
HTTP Request Components
HTTP Headers

3. Web Application Vulnerabilities

Risk Mitigation and ASM

4. ASM Application Configuration

Configuration Components
HTTP Class
Virtual Servers
SSL Termination/Initiation
HTTP Request Flow

5. Security Policy

Security Policy Properties
Policy Enforcer
Security Policy Configuration
Security Policy Components

6. Security Policy Building Tool

Deployment Wizard
Rapid Deployment Concepts

7. Application-Ready Security Policy

8. Reporting

9. Administering ASM

User Management
Human Readable Policy
Synching Configurations
ASM qkview
Upgrading to v10

10. Configuration Lab Project 1

11. Traffic Learning

Learning Concepts
Violations

12. Parameters

Parameter Types
Parameter Levels

13. Security Policy Builder

14. Advanced Topics

ASM iRules
Flow Login Pages
Anomaly Detections

15. XML and Web Services

XML Concepts
Web Services Protection

16. Protocol Security Manager

FTP Protection
SMTP Protection
HTTP Protection
Protocol Security Manager Statistics
Configuring Protocol Security Manager

17. Configuration Lab Project 2

Review Questions

RELATED COURSES

Courses
Cyber Security

Security Intelligence Fundamentals

Security intelligence is a fairly new discipline that has evolved from traditional log management and security information as well as event management solutions. This course focuses on the current IT and security landscape as well as the business and IT drivers behind a holistic IT security approach, which is a prerequisite to successfully thwart malicious attacks and the misuse of valuable enterprise assets.

Courses
Cyber Security

Certified Information Privacy Professional and Technologist (CIPP/US, CIPT) Prep Course

In this course, you will gain foundational knowledge on concepts of privacy and data protection laws and practice. You will learn common principles and approaches to privacy as well as understand the major privacy models employed around the globe. An introduction to information security concepts and information security management and governance will be covered including frameworks, controls, and identity and access management. You will also learn about online privacy as it relates to using personal information on websites and other Internet-related technologies.

The structure of US law, the enforcement of US privacy and security laws, and information management from a US perspective will be discussed as well as the limitations on private-sector collection and usage of data. This course will also provide an introduction to workplace privacy considerations and US state laws related to marketing, financial data, data security and breach notification.

You will learn the need and importance for privacy in the IT environment with impacts such as regulatory activities, security threats, advances in technology and the proliferation of social networks. This course will provide an introduction to privacy laws, regulations, and standards impacting privacy in IT and the risks inherent in the IT environment. You will also learn about the importance of personally identifiable information and methods for ensuring its protection.

This three-day program covering the principals of information privacy and privacy technology in the US private-sector includes:

Official IAPP CIPP and CIPT participant guides
Official IAPP CIPP textbook and CIPT textbooks ("Introduction to IT Privacy" and "Privacy in Technology")
Official IAPP CIPP and CIPT practice tests
IAPP CIPP/US and CIPT certification exam vouchers
IAPP membership for one year

Note: Your contact information must be provided to the IAPP and will be used by IAPP for membership services fulfillment in accordance with IAPP’s policies.

Courses
Cyber Security

CompTIA Advanced Security Practitioner (CASP) Prep Course

You have experience in the increasingly crucial field of information security, and now you’re ready to take that experience to the next level. CompTIAï¿½ Advanced Security Practitioner (CASP) (Exam CAS-002) is the course you will need to take if your job responsibilities include securing complex enterprise environments. In this course, you will expand on your knowledge of information security to apply more advanced principles that will keep your organization safe from the many ways it can be threatened. Today’s IT climate demands individuals with demonstrable skills, and the information and activities in this course can help you develop the skill set you need to confidently perform your duties as an advanced security professional. This course is designed for IT professionals who want to acquire the technical knowledge and skills needed to conceptualize, engineer, integrate, and implement secure solutions across complex enterprise environments.

This course can also benefit you if you intend to pass the CompTIA Advanced Security Practitioner (CAS-002) certification examination. What you learn and practice in this course can be a significant part of your preparation.

Courses
Cyber Security

Certified Ethical Hacker v9

If you’re concerned about the integrity of your network’s infrastructure, this course will teach you the ethical hacking tools and techniques needed to enhance your network’s defenses. You’ll begin by learning how perimeter defenses work. By scanning and attacking your own network (no real networks will be harmed), you’ll also learn how intruders operate and the steps to secure a system.

In the interactive, lab-filled environment of this ethical hacking course, you will gain in-depth knowledge and practical experience with current, essential security systems. You will explore common ethical hacking topics, such as intrusion detection, policy creation, social engineering, DDoS attacks, buffer overflows, and virus creation.

ï¿½

This course includes one exam voucher for the Certified Ethical Hacker (CEH) v9 exam.