This session will cover some of the industry-standard OWASP Top 10, a list describing the most prevalent security attacks on production environments. We will cover the Citrix NetScaler appliance and its role in shutting down these common vulnerabilities, and how to effectively do so through the use of the Application Firewall and protection features.
What you will learn
- How to protect against security attacks with Application Firewall
- How to reinforce your environment through NetScaler protection features
- How to simulate a vulnerable web server environment for testing
Gen AI in Business - Global Trends Report 2024.pdf
How to Protect Against top Web Security Issues With Citrix NetScaler
1. How to Protect Against top Web Security
Issues With Citrix NetScaler
Andrew Sandford & Lucas Araujo
Support Readiness Team
Citrix Support Webinar
July 29 & 30, 2014
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
https://www.owasp.org/index.php/Top_10_2013-A1-Injection
Inject into SQL/OS/LDAP
Untrusted data is sent as part of a command or query
Trick interpreter into executing unintended commands
CNS-205: Citrix Netscaler 10 Essentials and Networking
The objective of the Citrix NetScaler 10 Essentials and Networking course is to provide the foundational concepts and advanced skills necessary to implement, configure, secure, monitor, optimize, and troubleshoot a Citrix NetScaler system from within a networking framework. This course is designed specifically for learners who have limited or no previous NetScaler experience. In order to successfully complete this course, learners will have access to hands-on exercises within a virtual lab environment. An optional module on NetScaler SDX appliances is included with reinforcement simulation exercises.
CPE-350: Citrix NetScaler 10 Essentials and Networking Practice Exam
CNS-301: Citrix NetScaler 10 Advanced Implementation
his course provides the foundation to manage, configure and monitor advanced features and components of Citrix NetScaler 10. Interactive discussion and hands-on labs guide learners through advanced administration tasks such as troubleshooting, configuring application security with Citrix Application Firewall, tuning the NetScaler for high-traffic loads, configuring AAA for system management, and configuring advanced policies using service callouts. Advanced monitoring and management tasks such as configuring and implementing NetScaler Insight Center, Command Center, and NetScaler Web Logging are also covered. Prior NetScaler knowledge is strongly recommended. In order to successfully complete this course, learners will have access to hands-on exercises within a virtual lab environment.