Course Outline



  • A01 Broken Access Control

  • A02 Cryptographic Failures

  • A03 Injection

  • A04 Insecure Design

  • A05 Security Misconfiguration

  • A06 Vulnerable and Outdated Components

  • A07 Identification and Authentication Failures

  • A08 Software and Data Integrity Failures

  • A09 Security Logging and Monitoring Failures

  • A10 Server Side Request Forgery (SSRF)

Summary and Next Steps


  • A general understanding of web development lifecycle
  • Experience in web application development and security


  • Web developers
  • Leaders
  14 Hours


Related Courses

Web Security with the OWASP Testing Framework

  28 hours

Secure Developer Java (Inc OWASP)

  21 hours

Secure Developer .NET (Inc OWASP)

  21 hours

OWASP Web Security Testing Guide

  21 hours

OWASP Mobile Security Testing Guide

  21 hours

Python Programming - 4 days

  28 hours

Website Development in PHP

  21 hours

Design Patterns in PHP

  14 hours

Web Application Development in PHP

  21 hours

JavaScript - Advanced Programming

  14 hours

Administration with Powershell

  35 hours

Web Development with Symfony3

  28 hours

Web application development with Flask

  14 hours

Progressive Web Apps (PWA)

  14 hours

React: Build Highly Interactive Web Applications

  21 hours