OWASP for developers.

audience-icon.png

Target audience.

Software developers, testers, architects, business analysts.

target-yellow.png

Purpose of the course.

This course demonstrates the main vulnerabilities of web applications, problems and errors in program source code, and ways to test applications for vulnerabilities.

clock-icon.png

Details.

Duration of studies: 5 days / 40 hours
Language of instruction (students may choose): Russian, English

program-yellow.png

Program outline.

Injections

Cross-Site Scripting

Broken Authentication and Session Management

Insecure Direct Object References

Cross-Site Request Forgery

Security Misconfiguration

Insecure Cryptographic Storage

Failure to Restrict URL Access

Insufficient Transport Layer Protection

Unvalidated Redirects and Forwards

In this course, you will study:

  • theoretical details of each vulnerability

  • real-life examples of vulnerabilities

  • problems and errors in source code

  • ways to test and protect applications