OWASP Web Archives

API 351 – Securing Kubernetes in the Build and Release Stages

25 Minutes

0.5 CPE

AWA 101 – Fundamentals of Application Security

20 Minutes

0.5 CPE

AWA 102 – Secure Software Concepts

20 Minutes

0.5 CPE

COD 104 – Designing Secure Software

15 Minutes

0.25 CPE

COD 105 – Secure Software Development

20 Minutes

0.5 CPE

COD 106 – The Importance of Software Integration and Testing

15 Minutes

0.25 CPE

COD 107 – Secure Software Deployment

10 Minutes

0.25 CPE

COD 108 – Software Operations and Maintenance

10 Minutes

0.25 CPE

COD 201 – Secure C Encrypted Network Communications

15 Minutes

0.25 CPE

COD 206 – Creating Secure C++ Code

15 Minutes

.25 CPE

COD 207 – Communication Security in C++

15 Minutes

.25 CPE

COD 215 – Mitigating .NET Application Vulnerabilities

25 Minutes

.5 CPE

COD 246 – PCI DSS Requirement 3: Protecting Stored Cardholder Data

20 Minutes

.5 CPE

COD 247 – PCI DSS Requirement 4: Encrypting Transmission of Cardholder Data

15 Minutes

.25 CPE

COD 248 – PCI DSS Requirement 6: Develop and Maintain Secure Systems and Applications

15 Minutes

.25 CPE

COD 249 – PCI DSS Requirement 11: Regularly Test Security Systems and Processes

15 Minutes

.25 CPE

COD 256 – Creating Secure Ruby on Rails Foundations

45 Minutes

1 CPE

COD 268 – Mitigating TypeScript Application Vulnerabilities

30 Minutes

.5 CPE

COD 288 – Java Public Key Cryptography

20 Minutes

0.5 CPE

COD 304 – Principles of C++ Memory Safety

25 Minutes

.5 CPE

COD 305 – C++ Secure Memory Management

30 Minutes

.5 CPE

COD 306 – C++ Memory Safety: Debugging Tools and Techniques

20 Minutes

.5 CPE

COD 309 – Securing ASP.NET MVC Applications

20 Minutes

0.4 CPE

COD 310 – Securing ASP.NET Core Applications (NEW)

20 Minutes

0.4 CPE

COD 325 – Protecting Data in C# for .NET Core (NEW)

30 Minutes

0.6 CPE

DES 233 – Mitigating OWASP 2021 Identification and Authentication Failures

12 Minutes

0.25 CPE

DES 234 – Mitigating OWASP 2021 Cryptographic Failures

12 Minutes

0.25 CPE

DES 235 – Mitigating OWASP 2021 Insecure Design

12 Minutes

0.25 CPE

DES 236 – Mitigating OWASP 2021 Broken Access Control

12 Minutes

0.25 CPE

DES 237 – Mitigating OWASP 2021 Security Misconfiguration

12 Minutes

0.25 CPE

DES 238 – Mitigating OWASP 2021 Server-Side Request Forgery (SSRF)

12 Minutes

0.25 CPE

DES 239 – Mitigating OWASP 2021 Software and Data Integrity Failures

12 Minutes

0.25 CPE

DES 240 – Mitigating OWASP 2021 Vulnerable and Outdated Components

12 Minutes

0.25 CPE

DES 241 – Mitigating OWASP 2021 Security Logging and Monitoring Failures

12 Minutes

0.25 CPE

DES 270 – Mitigating OWASP Mobile Top 10 Risks (NEW)

30 Minutes

0.6 CPE

ENG 320 – Using Software Composition Analysis (SCA) to Secure Open-Source Components

20 Minutes

0.5 CPE

LAB 111 – Identifying Server-Side Request Forgery

5 Minutes

0.25 CPE

LAB 113 – Identifying Cryptographic Failures

5 Minutes

0.25 CPE

LAB 114 – Identifying Cookie Tampering

5 Minutes

0.25 CPE

LAB 115 – Identifying Reflective XSS

5 Minutes

0.25 CPE

LAB 116 – Identifying Forceful Browsing

5 Minutes

0.25 CPE

LAB 117 – Identifying Hidden Form Field

5 Minutes

0.25 CPE

LAB 118 – Identifying Weak File Upload Validation

5 Minutes

0.25 CPE

LAB 119 – Identifying Persistent XSS

5 Minutes

0.25 CPE

LAB 120 – Identifying XML Injection

5 Minutes

0.25 CPE

LAB 121 – Identifying Vulnerable and Outdate Components

5 Minutes

0.25 CPE

LAB 124 – Identifying Horizontal Privilege Escalation

5 Minutes

0.25 CPE

LAB 125 – Identifying Buffer Overflow

5 Minutes

0.25 CPE

LAB 126 – Identifying Information Leakage

5 Minutes

0.25 CPE

LAB 127 – Identifying Security Logging and Monitoring Failures

5 Minutes

0.25 CPE

LAB 128 – Identifying Unverified Password Change

5 Minutes

0.25 CPE

LAB 129 – Identifying Error Message Containing Sensitive Information

5 Minutes

0.25 CPE

LAB 130 – Identifying Generation of Predictable Numbers or Identifiers

5 Minutes

0.25 CPE

LAB 131 – Identifying Improper Restriction of XML External Entity Reference

5 Minutes

0.25 CPE

LAB 133 – Identifying Exposure of Sensitive Information Through Environmental Variables

5 Minutes

0.25 CPE

LAB 134 – Identifying Plaintext Storage of a Password

5 Minutes

0.25 CPE

LAB 135 – Identifying URL Redirection to Untrusted Site

5 Minutes

0.25 CPE

LAB 136 – Identifying Improper Neutralization of Script in Attributes in a Web Page

5 Minutes

0.25 CPE

LAB 137 – Identifying Improper Authorization

5 Minutes

0.25 CPE

LAB 138 – Identifying Authorization Bypass Through User-Controlled Key

5 Minutes

0.25 CPE

LAB 139 – Identifying Use of a Key Past its Expiration Date

5 Minutes

0.25 CPE

LAB 211 – Defending Java Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 212 – Defending Python Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 213 – Defending Node.js Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 214 – Defending C# Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 215 – Defending Java Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 216 – Defending Python Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 217 – Defending Node.js Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 218 – Defending C# Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 220 – Defending Against Hard-Coded Secrets

5 Minutes

0.25 CPE

LAB 221 – Defending C# Applications Against SQL Injection

10 Minutes

0.25 CPE

LAB 222 – Defending Python Applications Against SQL Injection

10 Minutes

0.25 CPE

LAB 223 – Defending Node.js Applications Against SQL Injection

10 Minutes

0.25 CPE

LAB 224 – Defending Java Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 225 – Defending Python Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 226 – Defending Node.js Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 227 – Defending C# Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 228 – Defending Java Applications Against Weak AES ECB Mode Encryption

10 Minutes

0.25 CPE

LAB 229 – Defending Java Applications Against Weak PRNG

10 Minutes

0.25 CPE

LAB 230 – Defending Java Applications Against XSS

15 Minutes

0.25 CPE

LAB 231 – Defending Python Applications Against XSS

15 Minutes

0.25 CPE

LAB 232 – Defending C# Applications Against XSS

15 Minutes

0.25 CPE

LAB 233 – Defending Node.js Applications Against XSS

15 Minutes

0.25 CPE

LAB 234 – Defending Java Applications Against Parameter Tampering

10 Minutes

0.25 CPE

LAB 235 – Defending Java Applications Against Plaintext Password Storage

10 Minutes

0.25 CPE

LAB 236 – Defending Java Applications Against Sensitive Information in Error Messages

10 Minutes

0.25 CPE

LAB 237 – Defending Java Applications Against SQL Injection

20 Minutes

0.5 CPE

LAB 238 – Defending C# Applications Against Weak AES ECB Mode Encryption

10 Minutes

0.25 CPE

LAB 239 – Defending C# Applications Against Weak PRNG

10 Minutes

0.25 CPE

LAB 240 – Defending Java Applications Against eXternal XML Entity (XXE) Vulnerabilities

10 Minutes

0.25 CPE

LAB 241 – Defending C# Applications Against eXternal XML Entity (XXE) Vulnerabilities

10 Minutes

0.25 CPE

LAB 242 – Defending Node.js Applications Against eXternal XML Entity (XXE) Vulnerabilities

10 Minutes

0.25 CPE

LAB 243 – Defending Python Applications Against eXternal XML Entity (XXE) Vulnerabilities

10 Minutes

0.25 CPE

LAB 244 – Defending Java Applications Against Security Misconfiguration

12 Minutes

0.25 CPE

LAB 245 – Defending Node.js Applications Against Plaintext Password Storage

10 Minutes

0.25 CPE

LAB 246 – Defending Node.js Applications Against Weak AES ECB Mode Encryption

10 Minutes

0.25 CPE

LAB 247 – Defending Node.js Applications Against Weak PRNG

10 Minutes

0.25 CPE

LAB 248 – Defending Node.js Applications Against Parameter Tampering

10 Minutes

0.25 CPE

LAB 249 – Defending Python Applications Against Plaintext Password Storage

10 Minutes

0.25 CPE

LAB 260 – Defending C# Applications Against Sensitive Information in Error Messages

10 Minutes

0.25 CPE

 Home/ Course Catalog/ Subject Matter/OWASP Web

OWASP Web

Courses

Training

Solutions

About