OWASP Top 10

Course Description

This course will help professionals understand the value and limits of the OWASP Top Ten. While the OWASP Top Ten is a valuable awareness document around some of the major risks in web applications today, the list is incomplete and largely provides only an attacker perspective. The course will highlight both the good, as well as point out some things that are missing in the OWASP Top Ten that IT professionals still need to be aware of.

Course Themes

  • Introduce the most prevalent web application security issues
  • Describe testing methods and applications
  • Provide remediation guidance to help eradicate specific issues
  • Demonstrate how the issues are exploited by attackers

Learning Objectives

  • Discuss the role of security in the software development lifecycle and how best to create secure applications
  • Recognize how these software security defects are exploited
  • Discuss discovery methods for these issues
  • Implement the practices that help prevent the most common mistakes and lead to more secure software

Details

Duration: 1 1/2 Hours

Level: Introductory

Intended Audience:

  • Developers
  • Development Managers
  • QA Engineers
  • Architects
  • Application Security Specialists

Competencies: Familiarity with at least one web programming language

Prerequisites: