Security of web applications for developers

Why take this course

Cyberattacks on web applications are becoming increasingly sophisticated, and coding errors can cost a company data, reputation, and money. This course will teach you how to design, develop, and maintain applications from the ground up according to security best practices. With the acquired knowledge, you will be able to effectively protect systems against the most common threats following OWASP guidelines.

What you’ll learn

• Apply the principles of Secure Software Development Life Cycle (Secure SDLC)
• Model threats and identify security risks
• Recognize and prevent vulnerabilities listed in OWASP TOP 10
• Secure sensitive data and properly configure environments
• Implement access control and security monitoring mechanisms
• Use tools for static and dynamic security analysis of code
• Build applications resilient to attacks

Certification & Exam

Upon completion, you will receive a personalized certificate confirming your skills in secure web application development. There is no final exam – active participation in the sessions is sufficient.

Who is this course for

• Developers building web applications
• Software architects responsible for solution security
• Members of development teams working on web projects
• Individuals preparing for a role as an application security specialist

Topics covered

• Secure SDLC
• Threat modeling
• OWASP ASVS
• OWASP TOP 10
  • Injection
  • Broken Authentication
  • Sensitive Data Exposure
  • XML External Entities (XXE)
  • Broken Access Control
  • Security misconfigurations
  • Cross Site Scripting (XSS)
  • Insecure Deserialization
  • Using Components with known vulnerabilities
  • Insufficient logging and monitoring
• Static and dynamic verification