This training follows the structure of the OWASP Top 10 list of the most critical web application security risks. For each risk, it provides its description, common examples of vulnerabilities and ways the attackers can use to exploit them, and explains the potential consequences of a successful attack.
Basic guidance on how to avoid each risk is also provided, which is delivered in engaging, seminar-style lecture format with hands-on lab exercises for you to complete. This hands-on approach keeps you engaged and ensures the knowledge transfer of critical secure coding techniques.
The OWASP Top 10 Boot Camp features several hands-on labs, that includes:
- Exploiting SQL injection
- Attacking authentication
- Cross-site scripting exploitation
- Source code auditing
- CMS identification
- Attacking web services
- Client-side attacks
- Open-source analysis & Google hacking
- Exploiting web application with w3a