Secure Developer Java (Inc OWASP) Training Course

This instructor-led live training, available Australia (online or on-site), is tailored for web developers who wish to use Angular and Spring Boot to build full-stack applications.

By the end of this training, participants will be able to:

• Develop a full-stack application with Angular and Spring Boot.
• Build backend applications with Spring Boot.
• Create frontend applications with Angular.
• Use Spring Security to configure authentication for a full-stack application.

Building a secure networked application can be challenging, even for developers who have previously utilised various cryptographic building blocks (such as encryption and digital signatures). To help participants grasp the role and application of these cryptographic primitives, the course first establishes a solid foundation regarding the core requirements of secure communication—specifically secure acknowledgment, integrity, confidentiality, remote identification, and anonymity. It also outlines typical threats that can compromise these requirements, alongside practical real-world solutions.

Given that cryptography is a critical component of network security, the course examines the most important cryptographic algorithms in symmetric cryptography, hashing, asymmetric cryptography, and key agreement. Rather than delving into complex mathematical theory, these topics are explored from a developer’s perspective, featuring typical use-case examples and practical considerations related to cryptography, such as public key infrastructures. Security protocols across various domains of secure communication are introduced, with an in-depth discussion of widely-used protocol families including IPSEC and SSL/TLS.

The course also addresses common cryptographic vulnerabilities, both concerning specific crypto algorithms and cryptographic protocols. Examples include BEAST, CRIME, TIME, BREACH, FREAK, Logjam, Padding oracle, Lucky Thirteen, POODLE, and similar threats, as well as RSA timing attacks. For each issue, the practical implications and potential consequences are described, again avoiding deep mathematical analysis.

Finally, as XML technology is central to data exchange for networked applications, the security aspects of XML are detailed. This covers the use of XML within web services and SOAP messages, along with protection measures such as XML signature and XML encryption. The course also highlights weaknesses in these protection measures and XML-specific security issues, such as XML injection, XML external entity (XXE) attacks, XML bombs, and XPath injection.

Participants attending this course will

• Understand fundamental concepts of security, IT security, and secure coding
• Understand the requirements of secure communication
• Learn about network attacks and defenses at different OSI layers
• Gain a practical understanding of cryptography
• Understand essential security protocols
• Understand some recent attacks against cryptosystems
• Gain information about some recent related vulnerabilities
• Understand security concepts of Web services
• Access sources and further readings on secure coding practices

Audience

Developers, Professionals

Developing secure C and C++ code demands rigorous defence against malicious exploitation, memory corruption, and input validation bypasses. This programme examines vulnerability patterns including buffer overflows, use-after-free, integer overflows, and type confusion. Participants apply secure coding guidelines, static analysis tools, and defensive programming techniques to eliminate weaknesses, enforce input sanitisation, and deliver hardened software resilient against cyberattacks.

Apache Groovy is a dynamic programming language for the JVM (Java Virtual Machine). Key features include scripting capabilities, Domain-Specific Language authoring, runtime and compile-time meta-programming, and functional programming. Groovy is frequently used as a complement to Java.

During this instructor-led live training, participants will learn how to program in Groovy by stepping through the creation of a sample application.

Audience

• Developers

Course Format

• A mix of lectures, discussions, exercises, and extensive hands-on practice

This instructor-led, live training in Australia (online or onsite) is aimed at beginner-level developers who wish to learn the basics of Groovy Programming.

By the end of this training, participants will be able to:

• Understand the basic programming concepts.
• Write simple Groovy scripts and utilize Groovy core features.
• Understand and apply basic principles of object-oriented programming using Groovy.
• Learn basic error-handling techniques to manage common programming errors and exceptions in Groovy.

This instructor-led, live training in Australia (online or onsite) is aimed at intermediate-level Java developers who wish to design, develop, deploy, and maintain microservices-based applications using Java frameworks like Spring Boot and Spring Cloud.

By the end of this training, participants will be able to:

• Understand the principles and benefits of microservices architecture.
• Build and deploy microservices using Java and Spring Boot.
• Implement service discovery, configuration management, and API gateways.
• Secure, monitor, and scale microservices effectively.
• Deploy microservices using Docker and Kubernetes.

This instructor-led, live training in Australia (available online or onsite) is tailored for intermediate to advanced developers seeking to master the development of microservices using Spring Boot, Docker, and Kubernetes.

By the end of this training, participants will be able to:

• Comprehend microservices architecture principles.
• Build production-ready microservices using Spring Boot.
• Understand the critical role of Docker in containerising microservices.
• Configure Kubernetes clusters to deploy and orchestrate microservices.

This instructor-led, live training in Australia (online or onsite) is designed for developers who wish to utilise Quarkus to build, test, and deploy applications that are fully powered by Java but with reduced resource consumption.

By the end of this training, participants will be able to:

• Set up the necessary development environment to start developing applications with Quarkus.
• Build, compile, and run applications in native mode using GraalVM.
• Utilise Quarkus tooling and extensions for building native applications using Maven.
• Containerise, execute, and deploy applications with Docker.

This instructor-led, live training in Australia (online or onsite) is directed at intermediate to advanced developers and architects who wish to develop Java native applications and microservices using Quarkus, featuring optimised memory usage and startup times.

By the conclusion of this training, participants will be able to:

• Develop high-performance, lightweight Java native applications using Quarkus.
• Build and deploy RESTful services and microservices architectures.
• Use GraalVM for native compilation and optimise startup and memory efficiency.
• Package and containerise applications for Kubernetes and OpenShift environments.

This instructor-led, live training in Australia (online or onsite) is tailored for software architects and web developers who want to utilise RabbitMQ as a messaging middleware and program in Java using Spring to build applications.

By the end of this training, participants will be able to:

• Utilise Java and Spring with RabbitMQ to develop applications.
• Design asynchronous, message-driven systems using RabbitMQ.
• Create and apply queues, topics, exchanges, and bindings in RabbitMQ.

This instructor-led, live training in Australia (online or onsite) is aimed at web developers who wish to build functional front-end and back-end web applications with Spring Boot, React, and Redux.

By the end of this training, participants will be able to:

• Build a front-end application with React and Redux.
• Create RESTful APIs with Spring Boot.
• Secure web services with Spring security and JWT web tokens.

This instructor-led, live training in Australia (online or onsite) is aimed at Java developers who wish to use the Spring 5 framework to develop and deploy build enterprise web applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5.
• Understand and implement Spring 5's latest features.
• Access databases with Spring Application.
• Use the new reactive web framework, WebFlow, to make an application reactive.
• Integrate a Spring application with legacy Java EE applications.
• Test and deploy an enteprise-grade Spring application.

Spring is a robust Java framework that streamlines enterprise application development through powerful dependency injection, a modular architecture, and simplified configuration options.

This instructor-led live training (available online or onsite) is designed for beginner-level Java developers looking to construct modern, production-ready web applications using the latest iteration of the Spring Framework and Spring Boot 3.5.5 alongside Java 21.

Upon completion of this training, participants will be equipped to:

• Grasp Spring’s core principles, including IoC, DI, and AOP.
• Configure Spring applications using XML, annotations, and JavaConfig.
• Develop RESTful services leveraging Spring Boot and JPA.
• Implement CRUD operations, manage transactions, and handle data persistence.
• Utilise advanced Spring features such as profiles, exception handling, and data serialization.

Course Format

• A concise theoretical introduction followed by extensive practical exercises.
• Hands-on implementation using real-world scenarios.
• Interactive discussions and guided troubleshooting sessions.

Course Customisation Options

• To request a customised training for this course, please contact us to arrange.

Spring WebFlux is a reactive programming module within the Spring Framework, specifically designed for developing non-blocking, event-driven web applications.

This instructor-led live training, available either online or onsite, targets beginner to intermediate-level Java developers who want to create scalable and highly responsive applications using Spring WebFlux.

Upon completion of this training, participants will be able to:

• Grasp the core concepts of reactive programming using Project Reactor.
• Design, build, and test non-blocking RESTful APIs using Spring WebFlux.
• Seamlessly integrate WebFlux with databases and third-party services.
• Apply reactive programming patterns to practical, real-world scenarios.

Course Format

• Engaging interactive lectures and group discussions.
• Extensive exercises and practical practice sessions.
• Hands-on coding in a live laboratory environment.

Customisation Options

• To request a tailored training program for this course, please get in touch with us to arrange it.

This instructor-led, live training in Australia (online or onsite) is aimed at developers who wish to use WebFlux to develop and deploy reactive applications.

By the end of this training, participants will be able to:

• Install and configure Spring 5 and the WebFlux framework.
• Develop reactive application and services.