Łódź

Boutique Hotel's, Piłsudskiego 10/14, Łódź, Poland, 90-051

The training room is located 3 kilometers from the city center.

Subcategories (5)

Image for the Network Security

Network Security
Image for the Application Security

Application Security
Image for the Penetration Testing

Penetration Testing
Image for the OT/IoT Security

OT/IoT Security
Image for the Open Source Intelligence (OSINT)

Open Source Intelligence (OSINT)

Explore Our Courses

Fortinet Firewall Management, Monitoring, and Maintenance

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at intermediate-level network administrators who wish to gain the essential skills to manage, administer, monitor, and maintain Fortinet security systems. By the end of this training, participants will be able to:
  • Configure and manage FortiGate firewalls.
  • Monitor network traffic and manage incidents with FortiAnalyzer.
  • Automate tasks and manage policies through FortiManager.
  • Apply preventive maintenance strategies and troubleshoot network issues.
Read more...

Introduction to FortiGate 1100E

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at beginner-level network administrators who wish to use FortiGate 1100E to manage and secure their network environments effectively. By the end of this training, participants will be able to:
  • Understand the basic architecture and features of FortiGate 1100E.
  • Learn how to deploy FortiGate 1100E in various network environments.
  • Gain hands-on experience with basic configuration and management tasks.
  • Understand security policies, NAT, and VPNs.
  • Learn to monitor and maintain FortiGate 1100E.
Read more...

FortiGate 7.4 Administration

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at intermediate-level network administrators who wish to manage and secure their networks using FortiGate firewalls. By the end of this training, participants will be able to:
  • Understand Fortigate features and functionalities, particularly those introduced or enhanced in version 7.4.
  • Configure and manage FortiGate devices and implement advanced security features.
  • Deploy and manage advanced security measures like IPS, antivirus, web filtering, and threat management.
  • Monitor network activities, analyze logs, and generate reports for auditing and compliance.
Read more...

Fortinet NSE3

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at intermediate-level technical professionals who wish to delve deeper into the technical aspects and functionalities of Fortinet’s product line to effectively recommend, sell, and implement Fortinet security solutions. By the end of this training, participants will be able to:
  • Gain in-depth knowledge of Fortinet’s advanced security solutions and products.
  • Understand the technical features, benefits, and deployment scenarios for each core Fortinet product.
  • Configure, manage, and troubleshoot Fortinet solutions in diverse environments.
  • Apply Fortinet products to address complex security challenges and requirements.
Read more...

Cortex XDR

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at security professionals who wish to learn how to use Cortex XDR in preventing and stopping the occurrence of sophisticated attacks and threats. By the end of this training, participants will be able to:
  • Understand the architecture and components of Cortex XDR.
  • Create and manage profiles for exploit and malware prevention.
  • Analyze behavioral threats and monitor response actions.
  • Perform basic Cortex app troubleshooting.
Read more...

Fortinet NSE2

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at beginner-level technical professionals who wish to learn the concept of the Security Fabric and how it evolved to address the cybersecurity needs of organizations. By the end of this training, participants will be able to:
  • Learn the evolution of cybersecurity and how it has shaped current security technologies.
  • Use Fortinet products to protect against specific types of cyber threats and attacks.
  • Understand the integration and automation capabilities of Fortinet solutions in providing a coordinated response to cyber incidents.
Read more...

Palo Alto Networks Firewall Troubleshooting

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at security professionals who wish to learn how to troubleshoot Palo Alto Networks' next-generation firewalls. By the end of this training, participants will be able to:
  • Understand the architecture of the next-generation firewall.
  • Investigate and troubleshoot networking issues using firewall tools.
  • Analyze advanced logs to resolve real-life scenarios.
Read more...

Fortinet NSE1

 7 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at beginner-level network security professionals who wish to learn the concept of cybersecurity and the current global threat landscape. By the end of this training, participants will be able to:
  • Understand the current global threat landscape and identify the main types of cyber adversaries.
  • Recognize the primary types of malware and the mechanics of cyber attacks.
  • Understand the basics of network security and the importance of a layered security approach.
  • Learn about Fortinet's Security Fabric and how it addresses modern cybersecurity challenges.
Read more...

Fortigate 600E Security Administration and Operations

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at intermediate-level network and security professionals who wish to effectively manage and secure networks using Fortigate 600E equipment, with a specific focus on HA configurations for enhanced reliability and performance. By the end of this training, participants will be able to:
  • Understand the features, specifications, and operating principles of the Fortigate 600E firewall.
  • Perform the initial setup of the Fortigate 600E, including basic configuration tasks like setting up interfaces, routing, and initial firewall policies.
  • Configure and manage advanced security features such as SSL VPN, user authentication, antivirus, IPS, web filtering, and anti-malware capabilities to protect against a variety of network threats.
  • Troubleshoot common issues in HA setups and effectively manage HA environments.
Read more...

Honeywell Security System

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at service technicians, system admins, or anyone who wishes to learn proper installation, usage, and management of the Honeywell security system. By the end of this training, participants will be able to:
  • Learn the concepts of the Honeywell security systems and components.
  • Properly install and maintain a Honeywell security system.
  • Utilize the Honeywell maintenance tools and management suite to control a security system.
Read more...

Panorama: Managing Firewalls at Scale

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at security professionals who wish to learn how to manage firewalls at scale. By the end of this training, participants will be able to:
  • Design, configure, and manage the Panorama FireWall management server.
  • Manage policies using device groups.
  • Roll out network configurations to different firewalls.
Read more...

Application Security for Developers

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at intermediate-level to advanced-level developers who wish to understand and apply secure coding practices, identify security risks in software, and implement defenses against cyber threats.By the end of this training, participants will be able to:
  • Understand common security vulnerabilities in web and software applications.
  • Analyze security threats and exploit techniques used by attackers.
  • Implement secure coding practices to mitigate security risks.
  • Use security testing tools to identify and fix vulnerabilities.
Read more...

FlexNet Administration

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at system administrators who wish to learn the fundamentals of software licensing, the key features of FlexNet, and how to implement and maintain software license management solutions. By the end of this training, participants will be able to:
  • Understand the fundamental concepts of software licensing.
  • Manage core components and operation systems of FlexNet.
  • Create various license models and types, generate license keys, and activate software licenses for end-users.
  • Add, manage, and allocate licenses to end-users, monitor license usage, and ensure compliance.
Read more...

Fortinet NSE4 - FortiOS

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at experienced network security managers who wish to gain the knowledge and skills needed to deploy, manage, and troubleshoot Fortinet's FortiGate security appliances running on FortiOS 7.2 as an NSE4 Network Security Professional. By the end of this training, participants will be able to:
  • Understand Fortinet's product portfolio and the role of FortiOS in network security.
  • Implement effective firewall policies, security profiles, and Network Address Translation (NAT).
  • Utilize security services and ensure network redundancy and failover.
  • Implement security best practices and optimize security policies for compliance and threat mitigation.
Read more...

Palo Alto Networks Firewall Essentials: Configuration and Management

 35 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at security professionals who wish to learn the fundamentals of managing Palo Alto Networks' next-generation firewalls. By the end of this training, participants will be able to:
  • Configure and manage Palo Alto Networks' firewall essential features.
  • Manage security and NAT policies.
  • Manage threat prevention strategies.
  • Monitor network threats and traffic.
Read more...

Automotive Cyber Security Fundamentals

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at engineers who wish to safeguard connected vehicles from cyber attacks. By the end of this training, participants will be able to:
  • Implement cybersecurity in automotive systems.
  • Choose the most suitable technologies, tools, and approaches.
Read more...

Security of internet applications

 14 Hours
Web application security is a key area that requires special attention in the context of cybercrime threats. Data encryption, secure data storage, unique session identifiers, strong authentication, data validation. Web application security is a process of continuous improvement that requires attention on many levels. Implementing and continuously improving security practices helps minimize the risk of attacks and protect user data and systems from threats.
Read more...

Android Security

 14 Hours
Android is an open platform for mobile devices such as handsets and tablets. It has a large variety of security features to make developing secure software easier; however, it is also missing certain security aspects that are present in other hand-held platforms. The course gives a comprehensive overview of these features, and points out the most critical shortcomings to be aware of related to the underlying Linux, the file system and the environment in general, as well as regarding using permissions and other Android software development components. Typical security pitfalls and vulnerabilities are described both for native code and Java applications, along with recommendations and best practices to avoid and mitigate them. In many cases discussed issues are supported with real-life examples and case studies. Finally, we give a brief overview on how to use security testing tools to reveal any security relevant programming bugs. Participants attending this course will 
  • Understand basic concepts of security, IT security and secure coding
  • Learn the security solutions on Android
  • Learn to use various security features of the Android platform
  • Get information about some recent vulnerabilities in Java on Android
  • Learn about typical coding mistakes and how to avoid them
  • Get understanding on native code vulnerabilities on Android
  • Realize the severe consequences of unsecure buffer handling in native code
  • Understand the architectural protection techniques and their weaknesses
  • Get sources and further readings on secure coding practices
Audience Professionals
Read more...

Comprehensive C# and .NET Application Security

 21 Hours
A number of programming languages are available today to compile code to .NET and ASP.NET frameworks. The environment provides powerful means for security development, but developers should know how to apply the architecture- and coding-level programming techniques in order to implement the desired security functionality and avoid vulnerabilities or limit their exploitation. The aim of this course is to teach developers through numerous hands-on exercises how to prevent untrusted code from performing privileged actions, protect resources through strong authentication and authorization, provide remote procedure calls, handle sessions, introduce different implementations for certain functionality, and many more. A special section is devoted to configuration and hardening of the .NET and ASP.NET environment for security. A brief introduction to the foundations of cryptography provides a common practical baseline for understanding the purpose and the operation of various algorithms, based on which the course presents the cryptographic features that can be used in .NET. This is followed by the introduction of some recent crypto vulnerabilities both related to certain crypto algorithms and cryptographic protocols, as well as side-channel attacks. Introduction of different vulnerabilities starts with presenting some typical programming problems committed when using .NET, including bug categories of input validation, error handling or race conditions. A special focus is given to XML security, while the topic of ASP.NET-specific vulnerabilities tackles some special issues and attack methods: like attacking the ViewState, or the string termination attacks. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn to use various security features of the .NET development environment
  • Have a practical understanding of cryptography
  • Understand some recent attacks against cryptosystems
  • Get information about some recent vulnerabilities in .NET and ASP.NET
  • Learn about typical coding mistakes and how to avoid them
  • Get practical knowledge in using security testing tools
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

Network Security and Secure Communication

 21 Hours
Implementing a secure networked application can be difficult, even for developers who may have used various cryptographic building blocks (such as encryption and digital signatures) beforehand. In order to make the participants understand the role and usage of these cryptographic primitives, first a solid foundation on the main requirements of secure communication – secure acknowledgement, integrity, confidentiality, remote identification and anonymity – is given, while also presenting the typical problems that may damage these requirements along with real-world solutions. As a critical aspect of network security is cryptography, the most important cryptographic algorithms in symmetric cryptography, hashing, asymmetric cryptography, and key agreement are also discussed. Instead of presenting an in-depth mathematical background, these elements are discussed from a developer's perspective, showing typical use-case examples and practical considerations related to the use of crypto, such as public key infrastructures. Security protocols in many areas of secure communication are introduced, with an in-depth discussion on the most widely-used protocol families such as IPSEC and SSL/TLS. Typical crypto vulnerabilities are discussed both related to certain crypto algorithms and cryptographic protocols, such as BEAST, CRIME, TIME, BREACH, FREAK, Logjam, Padding oracle, Lucky Thirteen, POODLE and similar, as well as the RSA timing attack. In each case, the practical considerations and potential consequences are described for each problem, again, without going into deep mathematical details. Finally, as XML technology is central for data exchange by networked applications, the security aspects of XML are described. This includes the usage of XML within web services and SOAP messages alongside protection measures such as XML signature and XML encryption – as well as weaknesses in those protection measures and XML-specific security issues such as XML injection, XML external entity (XXE) attacks, XML bombs, and XPath injection. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Understand the requirements of secure communication
  • Learn about network attacks and defenses at different OSI layers
  • Have a practical understanding of cryptography
  • Understand essential security protocols
  • Understand some recent attacks against cryptosystems
  • Get information about some recent related vulnerabilities
  • Understand security concepts of Web services
  • Get sources and further readings on secure coding practices
Audience Developers, Professionals
Read more...

Combined C/C++, JAVA and Web Application Security

 28 Hours
To serve in the best way heterogeneous development groups that are using various platforms simultaneously during their everyday work, we have merged various topics into a combined course that presents diverse secure coding subjects in didactic manner on a single training event. This course combines C/C++ and Java platform security to provide an extensive, cross-platform secure coding expertise. Concerning C/C++, common security vulnerabilities are discussed, backed by practical exercises about the attacking methods that exploit these vulnerabilities, with the focus on the mitigation techniques that can be applied to prevent the occurrences of these dangerous bugs, detect them before market launch or prevent their exploitation. Security components and service of Java are discussed by presenting the different APIs and tools through a number of practical exercises where participants can gain hands-on experience in using them. The course also covers security issues of web services and the related Java services that can be applied to prevent the most aching threats of the Internet based services. Finally, web- and Java-related security vulnerabilities are demonstrated by easy-to-understand exercises, which not only show the root cause of the problems, but also demonstrate the attack methods along with the recommended mitigation and coding techniques in order to avoid the associated security problems. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn client-side vulnerabilities and secure coding practices
  • Learn to use various security features of the Java development environment
  • Have a practical understanding of cryptography
  • Realize the severe consequences of unsecure buffer handling
  • Understand the architectural protection techniques and their weaknesses
  • Learn about typical coding mistakes and how to avoid them
  • Be informed about recent vulnerabilities in various platforms, frameworks and libraries
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

C/C++ Secure Coding

 21 Hours
This three day course covers the basics of securing the C/C++ code against the malicious users who may exploit many vulnerabilities in the code with memory management and input handling, the course cover the principals of writing secure code.
Read more...

Advanced Java Security

 21 Hours
Even experienced Java programmers are not mastering by all means the various security services offered by Java, and are likewise not aware of the different vulnerabilities that are relevant for web applications written in Java. The course – besides introducing security components of Standard Java Edition – deals with security issues of Java Enterprise Edition (JEE) and web services. Discussion of specific services is preceded with the foundations of cryptography and secure communication. Various exercises deal with declarative and programmatic security techniques in JEE, while both transport-layer and end-to-end security of web services is discussed. The use of all components is presented through several practical exercises, where participants can try out the discussed APIs and tools for themselves. The course also goes through and explains the most frequent and severe programming flaws of the Java language and platform and web-related vulnerabilities. Besides the typical bugs committed by Java programmers, the introduced security vulnerabilities cover both language-specific issues and problems stemming from the runtime environment. All vulnerabilities and the relevant attacks are demonstrated through easy-to-understand exercises, followed by the recommended coding guidelines and the possible mitigation techniques. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Understand security concepts of Web services
  • Learn to use various security features of the Java development environment
  • Have a practical understanding of cryptography
  • Understand security solutions of Java EE
  • Learn about typical coding mistakes and how to avoid them
  • Get information about some recent vulnerabilities in the Java framework
  • Get practical knowledge in using security testing tools
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

Standard Java Security

 14 Hours
Description The Java language and the Runtime Environment (JRE) was designed to be free from the most problematic common security vulnerabilities experienced in other languages, like C/C++. Yet, software developers and architects should not only know how to use the various security features of the Java environment (positive security), but should also be aware of the numerous vulnerabilities that are still relevant for Java development (negative security). The introduction of security services is preceded with a brief overview of the foundations of cryptography, providing a common baseline for understanding the purpose and the operation of the applicable components. The use of these components is presented through several practical exercises, where participants can try out the discussed APIs for themselves. The course also goes through and explains the most frequent and severe programming flaws of the Java language and platform, covering both the typical bugs committed by Java programmers and the language- and environment-specific issues. All vulnerabilities and the relevant attacks are demonstrated through easy-to-understand exercises, followed by the recommended coding guidelines and the possible mitigation techniques. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn to use various security features of the Java development environment
  • Have a practical understanding of cryptography
  • Learn about typical coding mistakes and how to avoid them
  • Get information about some recent vulnerabilities in the Java framework
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

.NET, C# and ASP.NET Security Development

 14 Hours
A number of programming languages are available today to compile code to .NET and ASP.NET frameworks. The environment provides powerful means for security development, but developers should know how to apply the architecture- and coding-level programming techniques in order to implement the desired security functionality and avoid vulnerabilities or limit their exploitation. The aim of this course is to teach developers through numerous hands-on exercises how to prevent untrusted code from performing privileged actions, protect resources through strong authentication and authorization, provide remote procedure calls, handle sessions, introduce different implementations for certain functionality, and many more. Introduction of different vulnerabilities starts with presenting some typical programming problems committed when using .NET, while the discussion of vulnerabilities of the ASP.NET also deals with various environment settings and their effects. Finally, the topic of ASP.NET-specific vulnerabilities not only deals with some general web application security challenges, but also with special issues and attack methods like attacking the ViewState, or the string termination attacks. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn to use various security features of the .NET development environment
  • Get practical knowledge in using security testing tools
  • Learn about typical coding mistakes and how to avoid them
  • Get information about some recent vulnerabilities in .NET and ASP.NET
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

The Secure Coding Landscape

 14 Hours
The course introduces some common security concepts, gives an overview about the nature of the vulnerabilities regardless of the used programming languages and platforms, and explains how to handle the risks that apply regarding software security in the various phases of the software development lifecycle. Without going deeply into technical details, it highlights some of the most interesting and most aching vulnerabilities in various software development technologies, and presents the challenges of security testing, along with some techniques and tools that one can apply to find any existing problems in their code. Participants attending this course will 
  • Understand basic concepts of security, IT security and secure coding
  • Understand Web vulnerabilities both on server and client side
  • Realize the severe consequences of unsecure buffer handling
  • Be informated about some recent vulnerabilities in development environments and frameworks
  • Learn about typical coding mistakes and how to avoid them
  • Understand security testing approaches and methodologies
Audience Managers
Read more...

Secure coding in PHP

 21 Hours
The course provides essential skills for PHP developers necessary to make their applications resistant to contemporary attacks through the Internet. Web vulnerabilities are discussed through PHP-based examples going beyond the OWASP top ten, tackling various injection attacks, script injections, attacks against session handling of PHP, insecure direct object references, issues with file upload, and many others. PHP-related vulnerabilities are introduced grouped into the standard vulnerability types of missing or improper input validation, incorrect error and exception handling, improper use of security features and time- and state-related problems. For this latter we discuss attacks like the open_basedir circumvention, denial-of-service through magic float or the hash table collision attack. In all cases participants will get familiar with the most important techniques and functions to be used to mitigate the enlisted risks. A special focus is given to client-side security tackling security issues of JavaScript, Ajax and HTML5. A number of security-related extensions to PHP are introduced like hash, mcrypt and OpenSSL for cryptography, or Ctype, ext/filter and HTML Purifier for input validation. The best hardening practices are given in connection with PHP configuration (setting php.ini), Apache and the server in general. Finally, an overview is given to various security testing tools and techniques which developers and testers can use, including security scanners, penetration testing and exploit packs, sniffers, proxy servers, fuzzing tools and static source code analyzers. Both the introduction of vulnerabilities and the configuration practices are supported by a number of hands-on exercises demonstrating the consequences of successful attacks, showing how to apply mitigation techniques and introducing the use of various extensions and tools. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn client-side vulnerabilities and secure coding practices
  • Have a practical understanding of cryptography
  • Learn to use various security features of PHP
  • Learn about typical coding mistakes and how to avoid them
  • Be informed about recent vulnerabilities of the PHP framework
  • Get practical knowledge in using security testing tools
  • Get sources and further readings on secure coding practices
Audience Developers
Read more...

Microsoft SDL Core

 14 Hours
The Combined SDL core training gives an insight into secure software design, development and testing through Microsoft Secure Development Lifecycle (SDL). It provides a level 100 overview of the fundamental building blocks of SDL, followed by design techniques to apply to detect and fix flaws in early stages of the development process. Dealing with the development phase, the course gives an overview of the typical security relevant programming bugs of both managed and native code. Attack methods are presented for the discussed vulnerabilities along with the associated mitigation techniques, all explained through a number of hands-on exercises providing live hacking fun for the participants. Introduction of different security testing methods is followed by demonstrating the effectiveness of various testing tools. Participants can understand the operation of these tools through a number of practical exercises by applying the tools to the already discussed vulnerable code. Participants attending this course will 
  • Understand basic concepts of security, IT security and secure coding
  • Get known to the essential steps of Microsoft Secure Development Lifecycle
  • Learn secure design and development practices
  • Learn about secure implementation principles
  • Understand security testing methodology
  • Get sources and further readings on secure coding practices
Audience Developers, Managers
Read more...

Security Testing

 14 Hours
After getting familiar with the vulnerabilities and the attack methods, participants learn about the general approach and the methodology for security testing, and the techniques that can be applied to reveal specific vulnerabilities. Security testing should start with information gathering about the system (ToC, i.e. Target of Evaluation), then a thorough threat modeling should reveal and rate all threats, arriving to the most appropriate risk analysis-driven test plan. Security evaluations can happen at various steps of the SDLC, and so we discuss design review, code review, reconnaissance and information gathering about the system, testing the implementation and the testing and hardening the environment for secure deployment. Many security testing techniques are introduced in details, like taint analysis and heuristics-based code review, static code analysis, dynamic web vulnerability testing or fuzzing. Various types of tools are introduced that can be applied in order to automate security evaluation of software products, which is also supported by a number of exercises, where we execute these tools to analyze the already discussed vulnerable code. Many real life case studies support better understanding of various vulnerabilities. This course prepares testers and QA staff to adequately plan and precisely execute security tests, select and use the most appropriate tools and techniques to find even hidden security flaws, and thus gives essential practical skills that can be applied on the next day working day. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn client-side vulnerabilities and secure coding practices
  • Understand security testing approaches and methodologies
  • Get practical knowledge in using security testing techniques and tools
  • Get sources and further readings on secure coding practices
Audience Developers, Testers
Read more...

Secure Web Application Development and Testing

 21 Hours
Protecting applications that are accessible via the web requires well-prepared security professional who are at all time aware of current attack methods and trends. Plethora of technologies and environments exist that allow comfortable development of web applications. One should not only be aware of the security issues relevant to these platforms, but also of all general vulnerabilities that apply regardless of the used development tools. The course gives an overview of the applicable security solutions in web applications, with a special focus on understanding the most important cryptographic solutions to be applied. The various web application vulnerabilities are presented both on the server side (following the OWASP Top Ten) and the client side, demonstrated through the relevant attacks, and followed by the recommended coding techniques and mitigation methods to avoid the associated problems. The subject of secure coding is wrapped up by discussing some typical security-relevant programming mistakes in the domain of input validation, improper use of security features and code quality. Testing plays a very important role in ensuring security and robustness of web applications. Various approaches – from high level auditing through penetration testing to ethical hacking – can be applied to find vulnerabilities of different types. However, if you want to go beyond the easy-to-find low-hanging fruits, security testing should be well planned and properly executed. Remember: security testers should ideally find all bugs to protect a system, while for adversaries it is enough to find one exploitable vulnerability to penetrate into it. Practical exercises will help understanding web application vulnerabilities, programming mistakes and most importantly the mitigation techniques, together with hands-on trials of various testing tools from security scanners, through sniffers, proxy servers, fuzzing tools to static source code analyzers, this course gives the essential practical skills that can be applied on the next day at the workplace. Participants attending this course will
  • Understand basic concepts of security, IT security and secure coding
  • Learn Web vulnerabilities beyond OWASP Top Ten and know how to avoid them
  • Learn client-side vulnerabilities and secure coding practices
  • Have a practical understanding of cryptography
  • Understand security testing approaches and methodologies
  • Get practical knowledge in using security testing techniques and tools
  • Be informed about recent vulnerabilities in various platforms, frameworks and libraries
  • Get sources and further readings on secure coding practices
Audience Developers, Testers
Read more...

CompTIA Pentest+ | PT0-002 egzam preparation (accredited training course with exam)

 35 Hours
PenTest+ assesses the most up-to-date penetration testing, and vulnerability assessment and management skills necessary to determine the resiliency of the network against attacks.
Read more...

Capture the Flag (CTF)

 14 Hours
This class will help the attendees to scan, test, hack on secure their own systems, get in-depth knowledge and practical experience with the current essential security systems. the attendees know how perimeter defenses work and then be lead into scanning and attacking their own networks, no real network is harmed, the attendees then will learn how intruders escalate privileges and what steps can be taken to secure a system, Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation.    
 
Read more...

DevOps Security: Creating a DevOps Security Strategy

 7 Hours
In this instructor-led, live course in Łódź, participants will learn how to formulate the proper security strategy to face the DevOps security challenge.
Read more...

Dobre praktyki wykonywania testów bezpieczeństwa

 14 Hours
The "Dobre praktyki wykonywania testów bezpieczeństwa" course prepares testers to effectively plan and conduct security tests. The program covers various types of testing such as infrastructure testing, application testing, penetration testing, and Advanced Persistent Threat testing (APT). Participants will acquire skills in designing security processes, assessing risk and using supporting tools. The course focuses on practical skills that can be immediately applied on the job, covering topics from infrastructure inventory to APT and configuration testing.
Read more...

Embedded Systems Security

 21 Hours
This instructor-led, live training in Łódź introduces the system architectures, operating systems, networking, storage, and cryptographic issues that should be considered when designing secure embedded systems. By the end of this course, participants will have a solid understanding of security principles, concerns, and technologies. More importantly, participants will be equipped with the techniques needed for developing safe and secure embedded software.
Read more...

System and Network Security with FortiGate

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at security engineers and system administrators who wish to use FortiGate NGFW's advanced security-driven network systems to protect their organization from internal and external threats. By the end of this training, participants will be able to:
  • Install and configure the preferred FortiGate NGFW software and hardware model.
  • Operate and employ FortiGate NGFW to improve the efficiency of system administration tasks.
  • Manage various forms of external and internal threats using FortiGate features.
  • Integrate FortiGate security fabric with the entire IT infrastructure to provide quick automated protection.
  • Ensure long-term protection from attacks with independent and continuous FortiGate threat intelligence.
  • Troubleshoot the most common firewall system setup errors relevant to FortiGate NGFWs.
  • Implement Fortinet security solutions in other enterprise applications.
Read more...

Introducing Information Security & Charting a Career Path

7 Hours
Target Audience: This course is designed for individuals interested in understanding information security and exploring potential career paths in the field. It is suitable for people from diverse backgrounds, including those with limited prior technical knowledge. Course Objectives: Attendees should:
  • Gain a broad understanding of information security concepts and principles.
  • Be able to identify key threats and vulnerabilities.
  • Have the capability to explore various career options and specialisations within information security.
  • Develop a foundation for further learning and exploration in the field.
Format of the Course:
  • Interactive lecture and group discussions.
  • Practical exercises and feedback sessions.
  • Participants are encouraged to bring questions and participate actively in discussions.
This agenda is flexible and can be adjusted based on time constraints and audience interests. Customised versions might include interactive elements such as quizzes, polls, and group discussions.

The course will provide resources and information about further learning, professional organisations, and career resources will be provided. Course Customisation Options
  • To request a customised training for this course, please contact us to arrange.
Read more...

IoT Security Architecture

 14 Hours
In this instructor-led, live training in Łódź, participants will understand Internet of Things (IoT) architectures and learn the different IoT security solutions applicable to their organization. By the end of this training, participants will be able to:
  • Understand IoT architectures.
  • Understand emerging IoT security threats and solutions.
  • Implement technologies for IoT security in their organization.
Read more...

Securing Windows Server 2016 (authorized training course MS 20744)

 35 Hours
This five-day, instructor-led course in Łódź teaches IT professionals how they can enhance the security of the IT infrastructure that they administer. This course begins by emphasizing the importance of assuming that network breaches have occurred already, and then teaches you how to protect administrative credentials and rights to help ensure that administrators can perform only the tasks that they need to, when they need to.
Read more...

NB-IoT for Developers

 7 Hours
In this instructor-led, live training in Łódź, participants will learn about the various aspects of NB-IoT (also known as LTE Cat NB1) as they develop and deploy a sample NB-IoT based application. By the end of this training, participants will be able to:
  • Identify the different components of NB-IoT and how to fit together to form an ecosystem.
  • Understand and explain the security features built into NB-IoT devices.
  • Develop a simple application to track NB-IoT devices.
Read more...

Penetration Testing with Nmap

 14 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at software testers who wish to protect their organization's network with Nmap. By the end of this training, participants will be able to:
  • Set up the necessary testing environment to start using Nmap.
  • Scan network systems for security vulnerabilities.
  • Discover active and vulnerable hosts.
Read more...

Network Penetration Testing

 35 Hours
This class will help the attendees to scan, test, hack and secure their own systems. To gain an in-depth knowledge and practical experience with the current essential security systems. The attendees will get to know how perimeter defences work and then be led into scanning and attacking their own networks, no real network is harmed. The attendees then will learn how intruders escalate privileges and what steps can be taken to secure a system, Intrusion Detection, Policy Creation, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation.
Read more...

OpenVAS

 14 Hours
OpenVAS is an advanced open source framework which consists of several services and tools for network vulnerability scanning and management. In this instructor-led, live training, participants will learn how to use OpenVAS for network vulnerability scanning. By the end of this training, participants will be able to:
  • Install and configure OpenVAS
  • Learn the fundamental features and components of OpenVAS
  • Configure and implement network vulnerability scans with OpenVAS
  • Review and interpret OpenVAS scan results
Audience
  • Network engineers
  • Network administrators
Format of the course
  • Part lecture, part discussion, exercises and heavy hands-on practice
Note
  • To request a customized training for this course, please contact us to arrange.
Read more...

Palo Alto Firewalls

 21 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at developers who wish to prevent malware intrusion with Palo Alto Networks. By the end of this training, participants will be able to:
  • Set up the necessary development environment to start developing firewalls.
  • Deploy a Palo Alto firewall in a cloud server.
  • Manage packet flow through Palo Alto firewalls.
  • Interpret QoS classifications and types.
Read more...

Public Key Infrastructure

 21 Hours
The public key and private key are the basis of public key cryptography (asymmetric), enabling secure communication and exchange of information in computer networks. The combination of both keys allows you to secure transmitted data, maintaining its confidentiality and ensuring the authenticity of digital signatures. The public key and private key are the basis of public key cryptography (asymmetric), enabling secure communication and exchange of information in computer networks. The combination of both keys allows you to secure transmitted data, maintaining its confidentiality and ensuring the authenticity of digital signatures.
Read more...

Securing Windows Using PowerShell Automation

 42 Hours
This instructor-led, live training in Łódź (online or onsite) is aimed at SysAdmins, systems engineers, security architects, and security analysts who wish to write, execute, and deploy PowerShell scripts and commands to automate Windows security management in their organization. By the end of this training, participants will be able to:
  • Write and execute PowerShell commands to streamline Windows security tasks.
  • Use PowerShell for remote command execution to run scripts on thousands of systems across an organization.
  • Configure and harden Windows Server and Windows Firewall to protect systems from malware and attacks.
  • Manage certificates and authentication to control user access and activity.
Read more...

How to Write Secure Code

 35 Hours
This Course in Łódź aims to help in the following:
  1. Help Developers to master the techniques of writing Secure Code
  2. Help Software Testers to test the security of the application before publishing to the production environment
  3. Help Software Architects to understand the risks surrounding the applications
  4. Help Team Leaders to set the security base lines for the developers
  5. Help Web Masters to configure the Servers to avoid miss-configurations
Read more...

Secure Developer Java (Inc OWASP)

 21 Hours
This course covers the secure coding concepts and principals with Java through Open Web Application Security Project (OWASP) methodology of testing. The Open Web Application Security Project is an online community which creates freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security.
Read more...

Secure Developer .NET (Inc OWASP)

 21 Hours
This course covers the secure coding concepts and principals with ASP.net through the Open Web Application Security Project (OWASP) methodology of testing , OWASP is an online community which creates freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security.  This Course explores the Dot Net Framework Security features and how to secure web applications.   
    
    
    
    
    
Read more...

Systems Security Certified Practitioner

 35 Hours
This course explore the technical skills to implement, monitor and administer IT infrastructure using information security policies and procedures. And how to protecting the confidentiality, integrity and availability of data.    
 
Read more...

Testy penetracyjne – wykrywanie i wykorzystywanie podatności

 28 Hours
The "Penetration Testing - Detecting and Exploiting Vulnerabilities" training comprehensively discusses issues related to practical testing of network and service security. Participants gain skills in penetration testing, including reconnaissance, finding vulnerabilities, attacks and takeover, as well as covering tracks. The course also covers aspects related to system analysis, social engineering and preparation of a test report, enabling practical exercises in a controlled virtual environment.
Read more...

Last Updated:

Testimonials (25)

a lot of knowledge, interesting information, many examples. Great!

Mateusz - Urzad Dozoru Technicznego

Course - Bezpieczeństwo sieci komputerowych – jak zabezpieczyć swoje usługi

Machine Translated

The trainer had an excellent knowledge of fortigate and delivered the content very well. Thanks a lot to Soroush.

Colin Donohue - Technological University of the Shannon: Midlands Midwest

Course - FortiGate 7.4 Administration

Multiple examples for each module and great knowledge of the trainer.

Sebastian - BRD

Course - Secure Developer Java (Inc OWASP)

Module3 Applications Attacks and Exploits, XSS, SQL injection Module4 Servers Attacks and Exploits, DOS, BOF

Tshifhiwa - Vodacom

Course - How to Write Secure Code

The oral skills and human side of the trainer (Augustin).

Jeremy Chicon - TE Connectivity

Course - NB-IoT for Developers

I extracted valuable information that I will be able to present in my company as a solution to one of the processes

Pawel - Santander

Course - Public Key Infrastructure

Machine Translated

The instructor's knowledge, practical experience, variety of topics and examples of practical use of new knowledge.

Kamil - Komenda Glowna Strazy Granicznej

Course - Testy penetracyjne – wykrywanie i wykorzystywanie podatności

Machine Translated

Not standard transfer of knowledge.

Daniel - mikroBIT sp. z o.o.

Course - System and Network Security with FortiGate

Machine Translated

All is satisfy

Motaz Abdallat - shrkt alshrq aladny lltwasl alajtmay

Course - Open Source Intelligence (OSINT) Advanced

Theoretical/General Information related to Network Security

Milan Karpf - "MOTOROLA SOLUTIONS SYSTEMS POLSKA" SPOLKA Z OGRANICZONA ODPOWIEDZIALNOSCIA

Course - Network Security Administrator

Machine Translated

Real-life examples.

Kristoffer Opdahl - Buypass AS

Course - Web Security with the OWASP Testing Framework

The trainer's subject knowledge was excellent, and the way the sessions were set out so that the audience could follow along with the demonstrations really helped to cement that knowledge, compared to just sitting and listening.

Jack Allan - RSM UK Management Ltd.

Course - Secure Developer .NET (Inc OWASP)

Scope of knowledge covered. Not everything was explained in depth, but that is probably a matter of time. The training lasts 3 days. During these 3 days, various topics were covered, which can be explored further after the training. The training was definitely beneficial. A lot of knowledge and topics were presented in an engaging way.

Pawel Sitarz - Icotera sp. z o.o.

Course - C/C++ Secure Coding

Machine Translated

Nothing it was perfect.

Zola Madolo - Vodacom

Course - Android Security

Piotr was incredibly knowledgeable and very patient. He was great at explaining things and I'd strongly recommend this course to others

Victoria Harper

Course - Open Source Cyber Intelligence - Introduction

The labs

Katekani Nkuna - Vodacom

Course - The Secure Coding Landscape

Trainer willing to answer questions and give bunch of examples for us to learn.

Eldrick Ricamara - Human Edge Software Philippines, Inc. (part of Tribal Group)

Course - Security Testing

It opens up a lot and gives lots of insight what security

Nolbabalo Tshotsho - Vodacom SA

Course - Advanced Java Security

Acceptance and cooperation of the coach to give the best thing

Nayef Hamouda - PSO

Course - WEBAP - Web Application Security

Lot's of information explained very well. Good examples, interesting exercises. Trainer showed us his real world experience.

Gergely Batho - GE Medical Systems Polska Sp. Z O.O.

Course - Application Security for Developers

**suitable for command**

Tomasz Jaworski - Sad Okregowy w Legnicy

Course - Palo Alto Firewalls

Machine Translated

The explanations of how the most common attacks happen against web applications.

Jacob Fisher - Mikron SA Boudry

Course - Advanced C#, ASP.NET and Web Application Security

Method of knowledge transfer

Adam Drabek - Gmina Miejska Krakow

Course - Network Security

Machine Translated

Modeling security, discussing good programming practices, various types of attacks.

Piotr Piatek - EduBroker Sp. z o.o.

Course - Embedded Systems Security

Machine Translated

Ann is very knowledgeable on the subject. She is constantly varying pace according to the feedback. There is a lot of room for discussing attendee's own experiences. It was a great joy !.

Sjoerd Hulzinga - KPN p/a Bloomville

Course - IoT Security Architecture

Provisional Courses

Android Security

2025-05-26 09:00
14 hours
Łódź
2060 PLN (Online)
2160 PLN (Classroom)

FlexNet Administration

2025-06-09 09:00
14 hours
Łódź
2580 PLN (Online)
2680 PLN (Classroom)

Application Security for Developers

2025-06-23 09:00
21 hours
Łódź
3100 PLN (Online)
3250 PLN (Classroom)

Panorama: Managing Firewalls at Scale

2025-07-07 09:00
21 hours
Łódź
3870 PLN (Online)
4020 PLN (Classroom)

NB-IoT for Developers

2025-07-18 09:00
7 hours
Łódź
1580 PLN (Online)
1630 PLN (Classroom)

Other regions in Poland

Other Countries

These courses are also available in other countries

Consulting

Information System Security Consulting
Online Information System Security training in Łódź, Information System Security training courses in Łódź, Weekend Information System Security courses in Łódź, Evening Information System Security training in Łódź, Information System Security instructor-led in Łódź, Online Information System Security training in Łódź, Information System Security private courses in Łódź, Information System Security one on one training in Łódź, Information System Security coaching in Łódź, Information System Security instructor in Łódź, Information System Security trainer in Łódź, Information System Security boot camp in Łódź, Information System Security classes in Łódź, Information System Security on-site in Łódź, Weekend Information System Security training in Łódź, Information System Security instructor-led in Łódź, Evening Information System Security courses in Łódź