Course code Title Language Price # Unit Startdate Hour Enddate Location Signup
SEC001 Developing against the OWASP top 10 Dutch €175.00 1 Half day(s) 13-11-2018 09u00 13-11-2018 Hasselt Subscribe
SEC001 Developing against the OWASP top 10 on your request on your request Contact Us

Developing against the OWASP top 10

Developing against the OWASP top 10

Overview

Course code: 
SEC001
Duration: 
1
Time Unit: 
Half day(s)
Overview: 

The Open Web Application Security Project is an online community and leading authority in providing methodologies, documentation, tools and technologies in the web application security field. A list of the top ten biggest Application Security Risks called the OWASP Top Ten describes the vulnerabilities as well as detection tactics and remediation:

1. Injection
2. Broken Authentication
3. Sensitive Data Exposure
4. XML External Entities (XXE)
5. Broken Access Control
6. Security Misconfiguration
7. Cross-Site Scripting (XSS)
8. Insecure Deserialization
9. Using Components with Known Vulnerabilities
10. Insufficient Logging & Monitoring

Our expert-teacher, a software engineer specialized in security, brings you the best practices by means of a hands-on workshop based on practical examples from projects. If desired, it is possible to look into specific use-cases of the participants.

The course is taught in Dutch but can be organised in English.

Topics

Topics: 

1. Injection
2. Broken Authentication
3. Sensitive Data Exposure
4. XML External Entities (XXE)
5. Broken Access Control
6. Security Misconfiguration
7. Cross-Site Scripting (XSS)
8. Insecure Deserialization
9. Using Components with Known Vulnerabilities
10. Insufficient Logging & Monitoring

Prerequisites

Prerequisites: 

Many web developers struggle to keep up with the skills needed to write secure code. This short course will provide the tools needed to understand the most common security threats and defenses, and best practices in coding. No specific prerequisites, except that we would expect you to be a developer!

Audience

Audience: 

Webdevelopers