Detect Application Attacks with Application Security Managem

Abstract

Vulnerabilities in your web applications can pose a serious risk to your organization, potentially allowing skilled attackers to gain access to unauthorized data or to compromise your infrastructure. The most important of these threats, including server-side request forgery (SSRF) attacks and various types of injection attacks, appear on the OWASP Top 10 list of the most critical security risks to web applications. As an engineer, you need to know how to protect your applications against these dangers.

In this course, you will get the opportunity to think like an attacker by performing various attacks against a web application. You will also see, as a defender, how you can leverage Datadog Application Security Management to identify which users are targeting your applications and which part of your code is impacted.

Learning Objectives

By the end of this course, you will be able to:

Enable ASM on a sample application.
Set up the appropriate options on the Datadog agent.
Instrument the application to collect trace data.
Observe how Datadog ASM can detect security attack vectors.

Primary Audience

Security engineers, who are interested in using Datadog to instrument and manage the security of web applications.

Prerequisites

Familiarity with the infrastructure and systems that power web applications.
Familiarity Linux command line shell.
Ability to understand YAML files.
The Datadog 101: Developer or Datadog 101:SRE course is recommended.
The Introduction to Application Performance Monitoring course is recommended.

Technical Requirements

Google Chrome or Firefox

Course Navigation

At the bottom of each lesson, click MARK LESSON COMPLETE AND CONTINUE button so that you are marked complete for each lesson and can receive the certificate at the end of the course.

Course Enrollment Period

Please note that your enrollment in this course ends after 30 days. You can re-enroll at any time and pick up where you left off.

Learning Center