Secure Developer Java (Inc OWASP) Training Course

Upon completion of this training, participants will be equipped to:

• Articulate the principles of application security and potential vulnerabilities
• Outline ABAP programming best practices, including the proper handling of SY-SUBRC
• Gain a deep understanding of injection vulnerabilities
• Identify and utilize security testing tools
• Explain the functionality of ATC and CVA

Course Format

• Interactive lectures and discussions.
• Extensive exercises and practical practice.
• Hands-on implementation within a live-lab environment.

This instructor-led live training in Brazil (online or on-site) is designed for web developers who wish to use Angular and Spring Boot to build full-stack applications.

By the end of this training, participants will be able to:

• Develop a full-stack application with Angular and Spring Boot.
• Build a backend application with Spring Boot.
• Create frontend applications with Angular.
• Use Spring Security to configure authentication for a full-stack application.

Developing a secure networked application can be challenging, even for developers familiar with cryptographic building blocks like encryption and digital signatures. To help participants grasp the role and application of these cryptographic primitives, the course begins by establishing a solid foundation on the core requirements of secure communication—secure acknowledgment, integrity, confidentiality, remote identification, and anonymity. It also addresses common threats that compromise these requirements and presents real-world solutions.

As cryptography is central to network security, the course covers key algorithms in symmetric cryptography, hashing, asymmetric cryptography, and key agreement. Rather than focusing on complex mathematics, these topics are explored from a developer’s perspective, featuring typical use-case examples and practical considerations such as public key infrastructures. The course introduces security protocols used in secure communication, offering an in-depth look at widely adopted protocol families like IPsec and SSL/TLS.

Common cryptographic vulnerabilities are discussed, covering issues related to specific algorithms and protocols such as BEAST, CRIME, TIME, BREACH, FREAK, Logjam, Padding oracle, Lucky Thirteen, POODLE, and RSA timing attacks. For each problem, the course outlines practical implications and potential consequences without delving into deep mathematical details.

Finally, recognizing the centrality of XML technology in data exchange for networked applications, the course examines the security aspects of XML. This includes the use of XML in web services and SOAP messages, along with protection mechanisms like XML Signature and XML Encryption. It also addresses weaknesses in these protections and XML-specific security issues such as XML injection, XML External Entity (XXE) attacks, XML bombs, and XPath injection.

Participants attending this course will

• Understand fundamental concepts of security, IT security, and secure coding
• Comprehend the requirements of secure communication
• Learn about network attacks and defenses across different OSI layers
• Gain practical knowledge of cryptography
• Understand essential security protocols
• Learn about recent attacks against cryptosystems
• Receive information on recent related vulnerabilities
• Grasp security concepts for web services
• Access resources and further readings on secure coding practices

Audience

Developers, Professionals

Apache Groovy is a dynamic programming language for the JVM (Java Virtual Machine). Key features include scripting capabilities, Domain-Specific Language authoring, runtime and compile-time meta-programming, and functional programming. Groovy is frequently used as a complement to Java.

In this instructor-led live training, participants will learn Groovy programming by stepping through the development of a sample application.

Audience

• Developers

Course Format

• A blend of lectures, discussions, exercises, and extensive hands-on practice

This instructor-led live training, available Brazil (online or onsite), is tailored for beginner developers seeking to learn the basics of Groovy Programming.

By the end of this training, participants will be able to:

• Grasp essential programming concepts.
• Create basic Groovy scripts and leverage core Groovy functionalities.
• Comprehend and implement fundamental object-oriented programming principles within Groovy.
• Master basic error-handling strategies to address common programming errors and exceptions in Groovy.

This instructor-led, live training in Brazil (online or onsite) is aimed at intermediate-level Java developers who wish to design, develop, deploy, and maintain microservices-based applications using Java frameworks like Spring Boot and Spring Cloud.

By the end of this training, participants will be able to:

• Understand the principles and benefits of microservices architecture.
• Build and deploy microservices using Java and Spring Boot.
• Implement service discovery, configuration management, and API gateways.
• Secure, monitor, and scale microservices effectively.
• Deploy microservices using Docker and Kubernetes.

This instructor-led, live training in Brazil (available online or onsite) is tailored for intermediate to advanced developers seeking to master the development of microservices using Spring Boot, Docker, and Kubernetes.

By the end of this training, participants will be able to:

• Comprehend microservices architecture principles.
• Build production-ready microservices using Spring Boot.
• Understand the critical role of Docker in containerizing microservices.
• Configure Kubernetes clusters to deploy and orchestrate microservices.

This instructor-led, live training in Brazil (online or onsite) is aimed at developers who wish to use Quarkus to build, test, and deploy applications, fully-powered with Java, but with less resource utilization.

By the end of this training, participants will be able to:

• Set up the necessary development environment to start developing applications with Quarkus.
• Build, compile, and run applications in native mode using GraalVM.
• Utilize Quarkus tooling and extensions for building native applications using Maven.
• Containerize, execute, and deploy applications with Docker.

This instructor-led, live training in Brazil (online or onsite) is aimed at intermediate-level to advanced-level developers and architects who wish to develop Java native applications and microservices using Quarkus with optimized memory usage and startup time.

By the end of this training, participants will be able to:

• Develop high-performance, lightweight Java native applications using Quarkus.
• Build and deploy RESTful services and microservices architectures.
• Use GraalVM for native compilation and optimize startup and memory efficiency.
• Package and containerize applications for Kubernetes and OpenShift environments.

This instructor-led live training in Brazil (online or onsite) is tailored for software architects and web developers who wish to use RabbitMQ as middleware and program in Java using Spring to build applications.

By the end of this training, participants will be able to:

• Use Java and Spring with RabbitMQ to build applications.
• Design asynchronous message-driven systems using RabbitMQ.
• Create and apply queues, topics, exchanges, and bindings in RabbitMQ.

This instructor-led live training in Brazil (online or onsite) is aimed at web developers who wish to build functional front-end and back-end web applications with Spring Boot, React, and Redux.

By the end of this training, participants will be able to:

• Build a front-end application with React and Redux.
• Create RESTful APIs with Spring Boot.
• Secure web services with Spring security and JWT web tokens.

This instructor-led live training in Brazil (online or onsite) targets Java developers who want to use the Spring 5 framework to develop and deploy enterprise web applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5.
• Understand and implement the latest features of Spring 5.
• Access databases with Spring Application.
• Use the new reactive web framework, WebFlow, to make an application reactive.
• Integrate a Spring application with legacy Java EE applications.
• Test and deploy an enteprise-grade Spring application.

Spring is a robust Java framework that streamlines enterprise application development by offering powerful dependency injection, modular architecture, and simplified configuration options.

This instructor-led, live training (available online or onsite) is designed for beginner-level Java developers looking to build modern, production-ready web applications using the latest Spring Framework and Spring Boot 3.5.5 alongside Java 21.

Upon completing this training, participants will be able to:

• Grasp Spring’s core principles, including IoC, DI, and AOP.
• Configure Spring applications using XML, annotations, and JavaConfig.
• Develop RESTful services using Spring Boot and JPA.
• Implement CRUD operations, manage transactions, and handle data persistence.
• Utilize advanced Spring features such as profiles, exception handling, and data serialization.

Course Format

• Concise theoretical introduction followed by extensive practical exercises.
• Hands-on implementation using real-world examples.
• Interactive discussions and guided troubleshooting.

Customization Options

• To request a customized training session for this course, please contact us to arrange.

Spring WebFlux is a reactive programming module within the Spring Framework designed for building non-blocking, event-driven web applications.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level Java developers who wish to build scalable and responsive applications using Spring WebFlux.

By the end of this training, participants will be able to:

• Grasp the core concepts of reactive programming with Project Reactor.
• Create and test non-blocking RESTful APIs using Spring WebFlux.
• Integrate WebFlux with databases and external services.
• Apply reactive patterns to real-world application scenarios.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led live training in Brazil (online or onsite) is aimed at developers who wish to use WebFlux to develop and deploy reactive applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5 and the WebFlux framework.
• Develop reactive applications and services.