Course Abstract – Secure Development
Security is everyone’s job. Developers, service engineers, and program and product managers must understand security basics and know how to build security into software and services to make products more secure while still addressing business needs and delivering user value. In this course, we will introduce you to why security is important, how common attacks are executed and what we as developers can do to protect our systems from these attacks. The course contains plenty of hands-on exercises that allow the participant to learn by doing.
Topics Covered
- Introduction
- Social engineering
- XSS – (Cross-Site Scripting)
- CSRF – (Cross-Site Request Forgery)
- Securing your cookies
- Injection attacks
- Securing the session
- Denial-of-Service (DoS)
- Securing our dependencies
- Writing more secure code
- OWASP top 10
- OWASP Application Security Verification Standard
Prerequisites
You should have a fundamental understanding of how the web works and basic web development experience including HTTP, HTML, and JavaScript.
Target Audience
This course targets developers on all platforms including .NET, Java, JavaScript, and PHP.
Learning Objectives
After the course, the participant will have a fundamental understanding of why security is important, how common attacks are carried out and how to protect your applications against these attacks. During this course, the participant will also have gained a deeper understanding of how the web works and how to think like an attacker.
Further courses
After the course, participants can immerse themselves in a one-day follow-up to this course that covers further web security topics.
