Course Overview

A hands-on course designed to equip learners with the skills needed to perform dynamic application security testing (DAST) using open-source tools. The course provides a solid foundation in application security, emphasizing the importance of DAST in modern DevSecOps workflows. Through practical demonstrations and real-world applications, learners will gain insights into detecting vulnerabilities in web applications, integrating security testing into development pipelines, and leveraging open-source solutions to enhance security posture. 

This course begins with an introduction to application security testing, covering DAST’s role and its comparison with SAST and SCA. Learners will then explore Wapiti, starting with its installation and setup before advancing to attack module configurations, vulnerability scans, and CI/CD integration. Additionally, the course introduces Dastardly from Burp Suite and explores ThreatMapper for securing cloud-native environments, including installation and CI/CD integration. Finally, learners will delve into reporting, security certification, and best practices for integrating DAST into DevSecOps. 

By the end of this course, you will be proficient in using open-source DAST tools to identify vulnerabilities, automate security testing, and integrate security into CI/CD pipelines for robust application security. 

What You Will Learn

  • The fundamentals of DAST and how it compares to SAST and SCA.
  • Installation, setup, and advanced usage of Wapiti for security testing.
  • How to utilize Dastardly from Burp Suite for streamlined vulnerability scanning.
  • Implementing ThreatMapper for cloud-native security and CI/CD integration.
  • Generating reports and understanding the role of DAST in DevSecOps certification.

Program Curriculum

  • Overview of Application Security
  • Introduction to DAST and Its Importance in DevSecOps
  • Comparison of SAST, DAST, and SCA
  • Chapter 1 Quiz

  • Introduction to Wapiti
  • Installation and Setup - Part 1
  • Installation and Setup - Part 2
  • Summary
  • Chapter 2 Quiz

  • Introduction
  • Activating and Deactivating Attack Modules
  • Conducting Scans for Common Vulnerabilities
  • Integration of Wapiti into CI/CD Pipelines
  • Summary
  • Chapter 3 Quiz

  • Introduction
  • Utilizing Dastardly
  • Summary
  • Chapter 4 Quiz

  • Introduction
  • Overview - Part 1
  • Overview - Part 2
  • ThreatMapper Installation
  • ThreatMapper CI/CD Integration
  • Summary
  • Chapter 5 Quiz

  • Introduction
  • Reports
  • DevSecOps Certification
  • Summary
Load more modules

Instructor

Bruno Rodrigues

With over 17 years in cybersecurity, Bruno Rodrigues is a Staff Security Engineer at BitSight, leading security initiatives across cloud infrastructure and software development. His expertise spans cloud security, DevSecOps, risk management, compliance, and incident response. He has conducted security assessments, automated tests, and supported cross-functional teams. Passionate about continuous learning, Bruno shares insights with the community and mentors emerging talent while honing his DevSecOps skills.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering video-based learning with 840+ courses and diverse Learning Paths to enhance your skills.

$ 69.00
Billed monthly or $599.00 billed annually

What is included

  • 840+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs and CTF Challenges for comprehensive skill-building.

$ 79.00
Billed monthly or $699.00 billed annually

Everything in Pro and

  • 1400+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month

Related Courses

1 of 50