Secure your Web infrastructure: Build robust web administration skills

OffSec Learning Path: Web System Administration Foundations

Modern organizations rely heavily on web applications for critical operations. This hands-on Learning Path will equip learners with the essential skills to secure web servers, applications, and databases, significantly reducing their organization's risk profile. Learners will:

Configure web servers securely, implementing best practices for Apache, nginx, and IIS
Harden web applications by applying secure coding principles and mitigating common vulnerabilities
Master TLS and PKI by learning to implement robust encryption and authentication

Get Started

Hero image for Secure your Web infrastructure: Build robust web administration skills

One of three system administration Learning Paths

UNIX System Administration Foundations

Web System Administration Foundations

Windows System Administration Foundations

Protect web environments by developing fundamental security expertise

This Learning Path empowers learners to proactively secure web infrastructure. Learners will develop the skills to harden web servers (Apache, nginx, IIS), write secure web code, protect databases (MSSQL), and master security protocols (TLS/PKI). These skills directly reduce attack surfaces, enable proactive identification of vulnerabilities, and make it significantly more difficult for attackers to succeed.

Who are these Learning Paths for?

Web administrators seeking to bolster their security skills
Security analysts specializing in the protection of web environments
IT professionals responsible for securing web-based infrastructure

Learning objectives

Understand web administration, grasping key security concepts, vulnerabilities, and attack vectors
Learn to implement best practices for UNIX system hardening
Keep systems up-to-date and mitigate vulnerabilities by developing patching strategies

Key modules in Web System Administration Foundations Learning Path

Secure Configuration of NGINX

This is a walk through the approach to hardening an Nginx web server aligned with the CIS Guideline on hardening. It covers the fullset of hardening recommendations.

Secure Configuration of MSSQL

Explanation of how MSSQL should be setup in a corporate environment to allow for best scaling and with security in mind. This includes service account, configurations and hardening.

Introduction to Web Secure Coding

Introduction to the concept of secure coding in web applications, including trust boundaries, input handling, output encoding, file handling, and parameterized queries.

TLS and PKI Essentials

Foundational and introductory TLS and PKI knowledge

Security Misconfigurations

We will cover web application and server hardening, error handling.

Troubleshooting

Introduction to concept of problem solving and troubleshooting in IT

View full syllabus

Web System Administration Foundations

modules

hours of content (approx.)

20+

skills

Earning an OffSec Learning Badge

Showcase your growing web administration proficiency! Upon completing 80% of the Web System Administration Foundations Learning Path, you'll receive an exclusive OffSec badge signifying:

Secure web administration proficiency: Demonstrate your expertise in securing web environments
Industry recognition: Adds a valuable OffSec credential to your skillset
Hands-on skill: Demonstrated ability to effectively implement Windows security measures and harden system attacks at the fundamental level