All Fundamental Series Microsoft Cisco Security VMware Oracle RedHat Project Management EC-Council AWS

F5/Configuring BIG-IP ASM: Application Security Manager

Overview Schedule & Fees Course Benefits Student Feedback FAQ Course Modules

Configuring BIG-IP ASM: Application Security Manager Certification Training Course Overview

Configuring BIG-IP ASM: Application Security Manager training course is designed to learn how to deploy, tune, and operate ASM to protect their web applications from HTTP-based attacks. In this training class, you will also learn ASM components for detecting and mitigating threats from multiple attack vectors such web scraping, Layer 7 Denial of Service, brute force, bots, code injection, and zero day exploits.

Target Audience:

This course is recommended for security and network administrators who will be responsible for the installation, deployment, tuning, and day-to-day maintenance of the Application Security Manager.

Configuring BIG-IP ASM: Application Security Manager (40 Hours) Download Course Contents

Live Virtual Classroom

Group Training 5250 Date On Request	1-on-1 Training (GTR) 6000 4 Hours 8 Hours Week Days Weekend Start Time : At any time 12 AM 12 PM Training Schedule: GTR=Guaranteed to Run

Special Solutions for Corporate Clients! Click here

Hire Our Trainers! Click here

Customers who bought this course also bought

F5-ASM/ Advanced Web Application Firewall (WAF) Training

10% discount on 2nd course:

Course Modules

Module 1: Setting Up the BIG-IP System

Introducing the BIG-IP System
Initially Setting Up the BIG-IP System
Archiving the BIG-IP System Configuration
Leveraging F5 Support Resources and Tools

Module 2: Traffic Processing with BIG-IP

Identifying BIG-IP Traffic Processing Objects
Overview of Network Packet Flow
Understanding Profiles
Overview of Local Traffic Policies
Visualizing the HTTP Request Flow

Module 3: Web Application Concepts

Overview of Web Application Request Processing
Web Application Firewall: Layer 7 Protection
ASM Layer 7 Security Checks
Overview of Web Communication Elements
Overview of the HTTP Request Structure
Examining HTTP Responses
How ASM Parses File Types, URLs, and Parameters
Using the Fiddler HTTP Proxy

Module 4: Common Web Application Vulnerabilities

A Taxonomy of Attacks: The Threat Landscape
What Elements of Application Delivery are Targeted?
Common Exploits Against Web Applications

Module 5: Security Policy Deployment

Defining Learning
Comparing Positive and Negative Security Models
The Deployment Workflow
Policy Type: How Will the Policy Be Applied
Policy Template: Determines the Level of Protection
Policy Templates: Automatic or Manual Policy Building
Assigning Policy to Virtual Server
Deployment Workflow: Using Advanced Settings
Selecting the Enforcement Mode
The Importance of Application Language
Configure Server Technologies
Verify Attack Signature Staging
Viewing Requests
Security Checks Offered by Rapid Deployment
Defining Attack Signatures
Using Data Guard to Check Responses

Module 6: Policy Tuning and Violations

Post-Deployment Traffic Processing
Defining Violations
Defining False Positives
How Violations are Categorized
Violation Rating: A Threat Scale
Defining Staging and Enforcement
Defining Enforcement Mode
Defining the Enforcement Readiness Period
Reviewing the Definition of Learning
Defining Learning Suggestions
Choosing Automatic or Manual Learning
Defining the Learn, Alarm and Block Settings
Interpreting the Enforcement Readiness Summary
Configuring the Blocking Response Page

Module 7: Attack Signatures

Defining Attack Signatures
Attack Signature Basics
Creating User-Defined Attack Signatures
Defining Simple and Advanced Edit Modes
Defining Attack Signature Sets
Defining Attack Signature Pools
Understanding Attack Signatures and Staging
Updating Attack Signatures

Module 8: Positive Security Policy Building

Defining and Learning Security Policy Components
Defining the Wildcard
Defining the Entity Lifecycle
Choosing the Learning Scheme
How to Learn: Never (Wildcard Only)
How to Learn: Always
How to Learn: Selective
Reviewing the Enforcement Readiness Period: Entities
Viewing Learning Suggestions and Staging Status
Violations Without Learning Suggestions
Defining the Learning Score
Defining Trusted and Untrusted IP Addresses
How to Learn: Compact

Module 9: Cookies and Other Headers

ASM Cookies: What to Enforce
Defining Allowed and Enforced Cookies
Configuring Security Processing on HTTP headers

Module 10: Reporting and Logging

Overview: Big Picture Data
Reporting: Build Your Own View
Reporting: Chart based on filters
Brute Force and Web Scraping Statistics
Viewing ASM Resource Reports
PCI Compliance: PCI-DSS 3.0
The Attack Expert System
Viewing Traffic Learning Graphs
Local Logging Facilities and Destinations
How to Enable Local Logging of Security Events
Viewing Logs in the Configuration Utility
Exporting Requests
Logging Profiles: Build What You Need
Configuring Response Logging

Module 11: Lab Project 1

Details are not available.

Module 12: Advanced Parameter Handling

Defining Parameter Types
Defining Static Parameters
Defining Dynamic Parameters
Defining Dynamic Parameter Extraction Properties
Defining Parameter Levels
Other Parameter Considerations

Module 13: Policy Diff and Administration

Comparing Security Policies with Policy Diff
Merging Security Policies
Editing and Exporting Security Policies
Restoring with Policy History
Examples of ASM Deployment Types
ConfigSync and ASM Security Data
ASMQKVIEW: Provide to F5 Support for Troubleshooting

Module 14: Using Application-Ready Templates

Application Templates: Pre-Configured Baseline Security

Module 15: Automatic Policy Building

Overview of Automatic Policy Building
Defining Templates Which Automate Learning
Defining Policy Loosening
Defining Policy Tightening
Defining Learning Speed: Traffic Sampling
Defining Track Site Changes

Module 16: Web Application Vulnerability Scanner Integration

Integrating Scanner Output Into ASM
Will Scan be Used for a New or Existing Policy?
Importing Vulnerabilities
Resolving Vulnerabilities
Using the Generic XML Scanner XSD file

Module 17: Layered Policies

Defining a Parent Policy
Defining Inheritance
Parent Policy Deployment Use Cases

Module 18: Login Enforcement, Brute Force Mitigation, and Session Tracking

Defining Login Pages
Configuring Automatic Detection of Login Pages
Defining Session Tracking
What Are Brute Force Attacks?
Brute Force Protection Configuration
Defining Source-Based Protection
Source-Based Brute Force Mitigations
Defining Session Tracking
Configuring Actions Upon Violation Detection
Session Hijacking Mitigation Using Device ID

Module 19: Web Scraping Mitigation and Geolocation Enforcement

Defining Web Scraping
Mitigating Web Scraping
Defining Geolocation Enforcement
Configuring IP Address Exceptions

Module 20: Layer 7 DoS Mitigation and Advanced Bot Protection

Defining Denial of Service Attacks
The General Flow of DoS Protection
Defining the DoS Profile
Overview of TPS-based DoS Protection
Applying TPS mitigations
Create a DoS Logging Profile
Defining DoS Profile General Settings
Defining Bot Signatures
Defining Proactive Bot Defense
Defining Behavioral and Stress-Based Detection
Defining Behavioral DoS Mitigation

Module 21: ASM and iRules

Common Uses for iRules
Identifying iRule Components
Triggering iRules with Events
Defining ASM iRule Events
Defining ASM iRule Commands
Using ASM iRule Event Modes

Module 22: Using Content Profiles

Defining Asynchronous JavaScript and XML
Defining JavaScript Object Notation (JSON)
Defining Content Profiles
The Order of Operations for URL Classification

Module 23: Review and Final Labs

Final Lab Project (Option 1) – Production Scenario
Final Lab Project (Option 2) – JSON Parsing with the Default JSON Profile
Final Lab Project (Option 3) – Managing Traffic with Layer 7 Local Traffic Policies

Download Course Contents

Request More Information

Request a call back?

Course Prerequisites

Basic Computer Knowledge.

Describe the role of the BIG-IP system as a full proxy device in an application delivery network
Provision the Application Security Manager
Define a web application firewall
Describe how ASM protects a web application by securing file types, URLs, and parameters
Deploy ASM using the Rapid Deployment template (and other templates) and define the security checks included in each
Define learn, alarm, and block settings as they pertain to configuring ASM
Define attack signatures and explain why attack signature staging is important
Contrast positive and negative security policy implementation and explain benefits of each
Configure security processing at the parameter level of a web application
Use an application template to protect a commercial web application
Deploy ASM using the Automatic Policy Builder
Tune a policy manually or allow automatic policy building
Integrate third party application vulnerability scanner output into a security policy
Configure login enforcement and session tracking
Configure protection against brute force, web scraping, and Layer 7 denial of service attacks
Implement iRules using specific ASM events and commands
Use Content Profiles to protect JSON and AJAX-based applications
Implement Bot Signatures
Implement Proactive Bot Defense

Top Trending Technologies

VMware vSphere Training & Certification Courses

Cisco Routing and Switching Training & Certification Courses

Cisco Data Center Training & Certification Courses

CCNA Certification Training Courses

Cisco Collaboration Certification Training Courses

Wireless/Cisco Training & Certification Courses

Cisco Service Provider Training & Certification Courses

FAQ's

No, the published fee includes all applicable taxes.

We offer below courses: Certified Application Security Engineer .NET - Certified Application Security Engineer JAVA - Building Web Apps with Angular and Typescript -