Secure Developer Java (Inc OWASP) Training Course

This instructor-led live training in Greece (online or on-site) is aimed at web developers who wish to use Angular and Spring Boot to build full-stack applications.

By the end of this training, participants will be able to:

• Develop a full-stack application with Angular and Spring Boot.
• Build a backend application with Spring Boot.
• Create frontend applications with Angular.
• Use Spring Security to configure authentication for a full-stack application.

Building a secure networked application can be challenging, even for developers who have previously utilized various cryptographic building blocks, such as encryption and digital signatures. To help participants grasp the role and application of these cryptographic primitives, this course first establishes a solid foundation in the core requirements of secure communication: secure acknowledgment, integrity, confidentiality, remote identification, and anonymity. It also addresses common issues that can compromise these requirements and presents real-world solutions.

Given that cryptography is a critical component of network security, the course covers essential cryptographic algorithms in symmetric cryptography, hashing, asymmetric cryptography, and key agreement. Rather than focusing on in-depth mathematical theory, these concepts are explored from a developer's perspective, featuring typical use-case examples and practical considerations such as public key infrastructures. Additionally, the course introduces security protocols used across various domains of secure communication, with a detailed discussion on widely adopted protocol families like IPSEC and SSL/TLS.

Common cryptographic vulnerabilities are examined, both concerning specific algorithms and protocols. Examples include BEAST, CRIME, TIME, BREACH, FREAK, Logjam, Padding oracle, Lucky Thirteen, POODLE, and others, as well as the RSA timing attack. For each issue, the course outlines practical considerations and potential consequences without delving into complex mathematical details.

Finally, since XML technology is central to data exchange for networked applications, the course describes the security aspects of XML. This covers the use of XML in web services and SOAP messages, along with protection measures such as XML Signature and XML Encryption. It also addresses weaknesses in these protections and XML-specific security issues, including XML injection, XML External Entity (XXE) attacks, XML bombs, and XPath injection.

Participants attending this course will

• Grasp the fundamental concepts of security, IT security, and secure coding
• Understand the requirements for secure communication
• Learn about network attacks and defenses across different OSI layers
• Gain a practical understanding of cryptography
• Comprehend essential security protocols
• Understand recent attacks targeting cryptosystems
• Receive information on recent related vulnerabilities
• Understand the security concepts of web services
• Access resources and further readings on secure coding practices

Audience

Developers, Professionals

Developing secure C and C++ code demands a robust defense against malicious exploitation, memory corruption, and input validation bypasses. This program explores vulnerability patterns such as buffer overflows, use-after-free errors, integer overflows, and type confusion. Participants will apply secure coding guidelines, utilize static analysis tools, and employ defensive programming techniques to eliminate weaknesses, enforce input sanitization, and deliver hardened software that is resilient against cyberattacks.

Apache Groovy is a dynamic programming language for the JVM (Java Virtual Machine). Its key features encompass scripting, Domain-Specific Language authoring, both runtime and compile-time meta-programming, as well as functional programming. Groovy is frequently employed as a complement to Java.

In this instructor-led live training, participants will learn how to program in Groovy by stepping through the development of a sample application.

Audience

• Developers

Course Format

• A blend of lecture, discussion, exercises, and extensive hands-on practice

This instructor-led, live training in Greece (online or onsite) is aimed at beginner-level developers who wish to learn the basics of Groovy Programming.

By the end of this training, participants will be able to:

• Understand the basic programming concepts.
• Write simple Groovy scripts and utilize Groovy core features.
• Understand and apply basic principles of object-oriented programming using Groovy.
• Learn basic error-handling techniques to manage common programming errors and exceptions in Groovy.

This instructor-led, live training in Greece (online or onsite) targets intermediate Java developers who aim to design, develop, deploy, and maintain microservices-based applications using Java frameworks such as Spring Boot and Spring Cloud.

Upon completing this training, participants will be able to:

• Comprehend the core principles and advantages of microservices architecture.
• Develop and deploy microservices utilizing Java and Spring Boot.
• Implement service discovery, configuration management, and API gateways.
• Effectively secure, monitor, and scale microservices.
• Deploy microservices leveraging Docker and Kubernetes.

This instructor-led, live training in Greece (available online or onsite) is tailored for intermediate to advanced developers seeking to master the development of microservices using Spring Boot, Docker, and Kubernetes.

By the end of this training, participants will be able to:

• Comprehend microservices architecture principles.
• Build production-ready microservices using Spring Boot.
• Understand the critical role of Docker in containerizing microservices.
• Configure Kubernetes clusters to deploy and orchestrate microservices.

This instructor-led, live training in Greece (available online or onsite) is aimed at developers who wish to use Quarkus to build, test, and deploy applications, fully-powered with Java, but with less resource utilization.

By the end of this training, participants will be able to:

• Set up the necessary development environment to start developing applications with Quarkus.
• Build, compile, and run applications in native mode using GraalVM.
• Utilize Quarkus tooling and extensions for building native applications using Maven.
• Containerize, execute, and deploy applications with Docker.

This instructor-led, live training in Greece (online or onsite) targets intermediate to advanced developers and architects aiming to develop Java native applications and microservices using Quarkus, with a focus on optimized memory usage and startup time.

Upon completion of this training, participants will be able to:

• Develop high-performance, lightweight Java native applications using Quarkus.
• Construct and deploy RESTful services and microservices architectures.
• Leverage GraalVM for native compilation to enhance startup speed and memory efficiency.
• Package and containerize applications for Kubernetes and OpenShift environments.

This instructor-led live training in Greece (online or onsite) targets software architects and web developers who wish to employ RabbitMQ as messaging middleware and use Java with Spring to build applications.

By the end of this training, participants will be able to:

• Use Java and Spring with RabbitMQ to build applications.
• Design asynchronous message-driven systems using RabbitMQ.
• Create and apply queues, topics, exchanges, and bindings in RabbitMQ.

This instructor-led live training (online or onsite) is designed for web developers who wish to build functional front-end and back-end web applications using Spring Boot, React, and Redux.

By the end of this training, participants will be able to:

• Build a front-end application with React and Redux.
• Create RESTful APIs with Spring Boot.
• Secure web services with Spring security and JWT web tokens.

This instructor-led live training in Greece (offered online or onsite) is designed for Java developers who intend to utilize the Spring 5 framework for developing and deploying enterprise web applications.

By the conclusion of this training, participants will be able to:

• Install and configure Spring 5.
• Comprehend and apply the newest features of Spring 5.
• Connect to databases using Spring applications.
• Leverage the updated reactive web framework, WebFlow, to build reactive applications.
• Integrate Spring applications with legacy Java EE systems.
• Test and deploy enterprise-level Spring applications.

Spring is a robust Java framework designed to streamline enterprise application development by offering powerful dependency injection, a modular architecture, and simplified configuration options.

This instructor-led live training, available both online and on-site, is tailored for beginner-level Java developers eager to create modern, production-ready web applications using the latest Spring Framework and Spring Boot 3.5.5 alongside Java 21.

Upon completing this training, participants will be capable of:

• Grasping Spring’s core principles, including Inversion of Control (IoC), Dependency Injection (DI), and Aspect-Oriented Programming (AOP).
• Configuring Spring applications through XML, annotations, and JavaConfig.
• Developing RESTful services using Spring Boot and JPA.
• Implementing CRUD operations, managing transactions, and handling data persistence.
• Leveraging advanced Spring features such as profiles, exception handling, and data serialization.

Course Format

• A concise theoretical overview followed by extensive practical exercises.
• Practical implementation using real-world scenarios.
• Interactive discussions and guided troubleshooting sessions.

Customization Options

• To request customized training for this course, please contact us to arrange.

Spring WebFlux is a reactive programming module within the Spring Framework designed for building non-blocking, event-driven web applications.

This instructor-led, live training (online or onsite) is aimed at beginner-level to intermediate-level Java developers who wish to build scalable and responsive applications using Spring WebFlux.

By the end of this training, participants will be able to:

• Understand the fundamentals of reactive programming with Project Reactor.
• Build and test non-blocking RESTful APIs using Spring WebFlux.
• Integrate WebFlux with databases and external services.
• Apply reactive patterns to real-world application scenarios.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This instructor-led, live training in Greece (online or on-site) is designed for developers who wish to utilize WebFlux for developing and deploying reactive applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5 and the WebFlux framework.
• Develop reactive applications and services.