Understanding Vulnerabilities and Security Threats (WSKF603)
- 1-day workshop
- Understand the OWASP® Top 10 Security Threats
- Live demo environment provides hands-on experience in exploiting and defending against vulnerabilities
- Hands-on learning
Securing Coding Fundamentals (WSKF601)
- 3-day workshop
- Empower developers to write and verify secure software themselves
- Learn application security and hacking
- Introduce secure design patterns
- Hands-on learning
Advanced Secure Coding
(Additional Hands-on Labs)
- Expand and customize Secure Coding Fundamentals
- Select one or multiple additional labs, up to 7 for each additional day of training
- All labs include explanation and scenarios of the vulnerability plus hands-on time for exploitation and fixing
See below for additional Workshop information or contact us to learn about pricing and availability.
Understanding Vulnerabilities and Security Threats (WSKF603)
This workshop aims to break down the OWASP® Top 10, helping developers understand the most common pitfalls and misconceptions associated with these risks.
- An in-depth understanding of each item in the OWASP® Top 10
- Hands-on experience in exploiting and defending against each vulnerability
- Insights into the most common mistakes developers make for each risk
- Techniques to battle vulnerabilities
Secure Coding Fundamentals (WSKF601)
Empowering developers to write and verify secure software by design independently, makes this workshop fundamental to security implementation and boosts the security maturity level within the organization. Lecture time is kept to a minimum, as the main focus is hands-on learning.
- Behavior changing, long-lasting security knowledge and skills
- Ability to independently test for web application vulnerabilities
- Skills to perform threat modeling sessions and prevent business logic vulnerabilities
- Understanding of how to fix vulnerabilities and know what secure design patterns to apply
- Knowledge to practice security by design using the Security Knowledge Framework
- Ability to use security automation that adds value in the CI/CD pipeline
Advanced Secure Coding (WSKF602)
Select additional hands-on labs not covered in Secure Coding Fundamentals (WSKF601) to customize your workshop. Each additional 45-minute lab includes explanation and scenarios of the vulnerability plus hands-on time for exploitation and fixing.
- HTTP response splitting
- Host header auth bypass
- Websocket message manipulation
- Web cache poisoning
- Graphql DOS
- GraphQL IDOR
- Authentication bypass
- Command injection
- Insecure deserialization pickle
- Server side request forgery
- Open redirect
- CSS Injection
- Local file inclusion
- Path traversal (LFI)
Bring these valuable workshops to your team!
Contact us to learn about pricing and availability.