Company
Products
Partners
Resources
Support & Training
  • Training
News & Events
Contact Us
 
    Training
    Training courses and certifications described will be available in the second half of 2008.
    Webriel: Deployment and Management
    Overview
    This two-day class is for those people who want to learn how to build and deploy Webriel Web Application Security Engine. We will also cover the open source Webriel Console, which helps manage alerts on suspicious web activity targeting your web servers. Hands-on labs with fully documented instructions help students deploy solid, secure Webriel installations and understand its inner workings.

    Target Audience:
    Web Server Administrators, Security Consultants and others that are responsible for web application security in their organizations.

    Prerequisites:
    This course assumes that students have a technical understanding of the HTTP protocol and a general understanding client server communications and network architecture. Proficiency with Linux and UNIX text editing tools (vi editor) is suggested, not required.

    Course Outline:
    - Introduction to Web Application Security.
    - Overview of the Web Application Evaluation Criteria.
    - Introduction to Webriel:
       • Webriel architecture
       • Webriel deployment options
       • Webriel installation
       • Webriel configuration and operation
       • Webriel directives and features overview
       • Webriel rules primer
       • Webriel tuning
       • Webriel console deployment and usage

    Webriel: Rules Writing Workshop
    Overview
    This two-day class provides an in-depth look at Webriel rules and Webriel rules language syntax. Learning how to take advantage of the power behind Webriel rules can help web security administrators write and configure highly effective rules. This class features extensive hands-on rules development and testing to reinforce the theoretical concepts that are presented.

    Target Audience:
    Web Server Administrators, Security Consultants and others that are responsible for web application security in their organizations.

    Prerequisites:
    In order to gain the most value from the course, students should be familiar with Perl Compatible Regular Expressions (PCRE). This course assumes that students have a technical understanding of the HTTP protocol. Proficiency with Linux and UNIX text editing tools (vi editor) is suggested, not required.

    Course Outline:
    - Introduction to Webriel Rule Language.
    - Anatomy of a Webriel rule.
    - Overview of PCRE.
    - Variables.
    - Transformation functions.
    - Actions.
    - Using advanced rule syntax with the “chain” action.
    - Overview of the Core Rule set.
    - Creating custom rules.
    - Virtual Patching.
    - Using initcol and setsid for stateful rules.
    - Good rule writing practices.
    - Testing, tuning rules.
    - Rule Debugging.
    - Rule management.

 
© 2008 Webriel Web Security. All rights reserved
Starwave International is committed to providing organizations with continuous, customized web application security. Starwave’s Webriel protects your organization's sensitive information from attacks that have bypassed network security and exploit coding flaws.© 2008 Starwave International All rights reserved.