Essentials of IBM Rational AppScan Source Edition for Security V8.5 (RL310)

Request a Quote for this class

About this Course

This course teaches you how to use IBM Rational AppScan Source Edition for Security. It combines both class lectures and hands-on lab work and is the foundation of the effective use of Rational AppScan Source Edition. This course covers the complete Rational AppScan Source Edition, which includes these components: Rational AppScan Enteprise Server, Rational AppScan Enteprise Console, Rational AppScan Source Edition for Developer, Rational AppScan Source Edition for Remediation, Rational AppScan Source Edition Security Knowledge Base, Rational AppScan Source Edition Command Line Interface (CLI), Rational AppScan Source Edition Automation, Rational AppScan Source Edition Configuration Utilities (Ant, Make, Maven Plug-in). This course provides comprehensive and practical coverage of the capabilities for each of these Rational AppScan Source Edition components. The course explores deployment options and integration with the software development lifecycle (SDLC). You learn how to integrate and optimize the Rational AppScan Source Edition workflow into your environment. To help organizations better enforce their unique security policies, this course describes how to customize the Rational AppScan Source Edition through the use of custom rules. You learn how to administer and manage your Rational AppScan Source Edition environment. You gain hands-on experience by using Rational AppScan Source Edition on demonstration web applications.

Audience Profile

This basic course is for:

  • Web application developers
  • Security auditors
  • Security team managers

At Course Completion

Upon completing this course, students will be able to:

  • Summarize the major components of the Rational AppScan Source Edition for Security solution
  • Explain how Rational AppScan Source Edition supports and integrates with the software development lifecycle (SDLC)
  • Configure an application for vulnerability scanning
  • Create custom rules
  • Triage the results of a vulnerability scan
  • Bundle results for developer remediation
  • Specify Rational AppScan Source Edition for Developer Plug-in fundamentals
  • Review the capabilities of the Rational AppScan Source Edition command line interface (CLI)
  • Describe the capabilities and the requirements of Rational AppScan Source Edition utilities
  • Use the different types of Rational AppScan Source Edition reports
  • Describe user management
  • Diagnose common Rational AppScan Source Edition for Security issues

Prerequisites

You should:

  • Have Web application security knowledge
  • Complete Essentials of Web Application Security (RT302) or Essentials of Web Application Security V2.0 (RT330)

 

Course Outline

  1. About this course
  2. Introduction to Rational AppScan Source Edition for Security
  3. Installing Rational AppScan Source Edition
  4. Using Rational AppScan Source Edition for Security
  5. Using Rational AppScan Source Edition Developer Plug-ins
  6. Using the command-line interface (CLI)
  7. Advanced configuration
  8. Reporting in Rational AppScan Source Edition for Security
  9. Rational AppScan Source Edition administration
  10. Troubleshooting Rational AppScan Source Edition