OWASP Web Archives

AWA 106 – Building Secure Software: Challenges in Application Security (NEW)

5 Minutes

0.1 CPE

AWA 107 – Building Secure Software: Foundations & Best Practices (NEW)

15 Minutes

0.3 CPE

AWA 108 – Building Secure Software: A Guide to Software Integration, Testing, and Deployment (NEW)

20 Minutes

0.4 CPE

LAB 351 – Defending TypeScript Applications Against Cross-Site Scripting

15 Minutes

0.3 CPE

LAB 353 – Defending TypeScript Applications Against Improper Authentication

15 Minutes

0.3 CPE

LAB 354 – Defending Go Applications Against Improper Authentication

15 Minutes

0.3 CPE

LAB 350 – Defending Go Applications Against SQL Injection

15 Minutes

0.3 CPE

LAB 352 – Defending Go Applications Against Cross-Site Scripting

15 Minutes

0.3 CPE

DES 270 – Mitigating OWASP Mobile Top 10 Risks

30 Minutes

0.6 CPE

LAB 349 – Defending TypeScript Applications Against SQL Injection

15 Minutes

0.3 CPE

COD 325 – Protecting Data in C# for .NET Core

30 Minutes

0.6 CPE

COD 310 – Securing ASP.NET Core Applications

20 Minutes

0.4 CPE

LAB 340 – Defending C Applications Against Use After Free

15 Minutes

0.3 CPE

LAB 341 – Defending C++ Applications Against Use After Free

15 Minutes

0.3 CPE

LAB 347 – Defending C Applications Against Null Pointer Dereference

15 Minutes

0.3 CPE

LAB 329 – Defending Go Applications Against SSRF

15 Minutes

0.3 CPE

LAB 333 – Defending Go Applications Against Hard-coded Credentials

15 Minutes

0.3 CPE

LAB 338 – Defending Go Applications Against CSRF

15 Minutes

0.3 CPE

LAB 339 – Defending Go Applications Against Path Traversal

15 Minutes

0.3 CPE

LAB 342 – Defending TypeScript Applications Against Command Injection

15 Minutes

0.3 CPE

LAB 343 – Defending Go Applications Against Command Injection

15 Minutes

0.3 CPE

LAB 344 – Defending TypeScript Applications Against Incorrect Authorization

15 Minutes

0.3 CPE

LAB 345 – Defending Go Applications Against Incorrect Authorization

15 Minutes

0.3 CPE

LAB 346 – Defending TypeScript Applications Against Deserialization of Untrusted

15 Minutes

0.3 CPE

LAB 626 – Using an Exploit Framework for SQL Injection

30 Minutes

0.6 CPE

API 351 – Securing Kubernetes in the Build and Release Stages

25 Minutes

0.5 CPE

LAB 327 – Defending C Applications Against Path Traversal

5 Minutes

.25 CPE

LAB 328 – Defending C++ Applications Against Path Traversal

5 Minutes

.25 CPE

COD 268 – Mitigating TypeScript Application Vulnerabilities

30 Minutes

.5 CPE

COD 304 – Principles of C++ Memory Safety

25 Minutes

.5 CPE

COD 305 – C++ Secure Memory Management

30 Minutes

.5 CPE

COD 306 – C++ Memory Safety: Debugging Tools and Techniques

20 Minutes

.5 CPE

COD 215 – Mitigating .NET Application Vulnerabilities

25 Minutes

.5 CPE

LAB 301 – Defending Java Applications Against Open Redirect

5 Minutes

.25 CPE

LAB 302 – Defending Python Applications Against Open Redirect

5 Minutes

.25 CPE

LAB 303 – Defending C# Applications Against Open Redirect

5 Minutes

.25 CPE

LAB 304 – Defending Node.js Applications Against Open Redirect

5 Minutes

.25 CPE

LAB 305 – Defending Java Applications Against Weak Password Reset

5 Minutes

.25 CPE

LAB 306 – Defending Python Applications Against Weak Password Reset

5 Minutes

.25 CPE

LAB 307 – Defending C# Applications Against Weak Password Reset

5 Minutes

0.25 CPE

LAB 309 – Defending TypeScript Applications Against Unrestricted Upload of File with Dangerous Type

5 Minutes

.25 CPE

LAB 314 – Defending TypeScript Applications Against SSRF

5 Minutes

.25 CPE

LAB 316 – Defending TypeScript Applications Against Hard-coded Credentials

5 Minutes

.25 CPE

LAB 320 – Defending TypeScript Applications Against Code Injection

5 Minutes

.25 CPE

LAB 325 – Defending TypeScript Applications Against CSRF

5 Minutes

.25 CPE

LAB 326 – Defending TypeScript Applications Against Path Traversal

5 Minutes

.25 CPE

COD 288 – Java Public Key Cryptography

20 Minutes

0.5 CPE

LAB 287 – Defending Java Applications Against Null Pointer Dereference

10 Minutes

.25 CPE

LAB 288 – Defending C# Applications Against Null Pointer Dereference

10 Minutes

.25 CPE

LAB 289 – Defending Java Applications Against Path Traversal

10 Minutes

.25 CPE

LAB 290 – Defending Python Applications Against Path Traversal

10 Minutes

.25 CPE

LAB 291 – Defending Node.js Applications Against Path Traversal

10 Minutes

.25 CPE

LAB 292 – Defending C# Applications Against Path Traversal

10 Minutes

.25 CPE

LAB 293 – Defending Java Applications Against Integer Overflow

10 Minutes

.25 CPE

LAB 294 – Defending C# Applications Against Integer Overflow

10 Minutes

.25 CPE

LAB 275 – Defending Java Applications Against Command Injection

10 Minutes

0.25 CPE

LAB 276 – Defending Python Applications Against Command Injection

10 Minutes

0.25 CPE

LAB 277 – Defending Node.js Applications Against Command Injection

10 Minutes

0.25 CPE

LAB 278 – Defending C# Applications Against Command Injection

10 Minutes

0.25 CPE

LAB 279 – Defending Java Applications Against Dangerous File Upload

10 Minutes

0.25 CPE

LAB 280 – Defending Python Applications Against Dangerous File Upload

10 Minutes

0.25 CPE

LAB 281 – Defending Node.js Applications Against Dangerous File Upload

10 Minutes

0.25 CPE

LAB 282 – Defending C# Applications Against Dangerous File Upload

10 Minutes

0.25 CPE

LAB 283 – Defending Java Applications Against RegEx DoS

10 Minutes

0.25 CPE

LAB 284 – Defending Python Applications Against RegEx DoS

10 Minutes

0.25 CPE

LAB 285 – Defending Node.js Applications Against RegEx DoS

10 Minutes

0.25 CPE

LAB 286 – Defending C# Applications Against RegEx DoS

10 Minutes

0.25 CPE

LAB 137 – Identifying Improper Authorization

5 Minutes

0.25 CPE

LAB 138 – Identifying Authorization Bypass Through User-Controlled Key

5 Minutes

0.25 CPE

LAB 139 – Identifying Use of a Key Past its Expiration Date

5 Minutes

0.25 CPE

ENG 320 – Using Software Composition Analysis (SCA) to Secure Open-Source Components

20 Minutes

0.5 CPE

LAB 212 – Defending Python Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 213 – Defending Node.js Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 214 – Defending C# Applications Against Credentials in Code Medium

10 Minutes

.25 CPE

LAB 215 – Defending Java Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 216 – Defending Python Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 217 – Defending Node.js Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 218 – Defending C# Applications Against Business Logic Error for Input Validation

10 Minutes

.25 CPE

LAB 224 – Defending Java Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 225 – Defending Python Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 226 – Defending Node.js Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 227 – Defending C# Applications Against Forceful Browsing

10 Minutes

.25 CPE

LAB 610 – ATT&CK: File and Directory Permissions Modification

12 Minutes

0.25 CPE

LAB 611 – ATT&CK: File and Directory Discovery

12 Minutes

0.25 CPE

LAB 133 – Identifying Exposure of Sensitive Information Through Environmental Variables

5 Minutes

0.25 CPE

LAB 134 – Identifying Plaintext Storage of a Password

5 Minutes

0.25 CPE

LAB 135 – Identifying URL Redirection to Untrusted Site

5 Minutes

0.25 CPE

LAB 136 – Identifying Improper Neutralization of Script in Attributes in a Web Page

5 Minutes

0.25 CPE

LAB 131 – Identifying Improper Restriction of XML External Entity Reference

5 Minutes

0.25 CPE

LAB 263 – Defending Java Applications Against Sensitive Information in Log Files

10 Minutes

.25 CPE

LAB 264 – Defending Python Applications Against Sensitive Information in Log Files

10 Minutes

.25 CPE

LAB 265 – Defending Node.js Applications Against Sensitive Information in Log Files

10 Minutes

.25 CPE

LAB 266 – Defending C# Applications Against Sensitive Information in Log Files

10 Minutes

.25 CPE

LAB 267 – Defending Java Applications Against Deserialization of Untrusted Data

10 Minutes

.25 CPE

LAB 268 – Defending Python Applications Against Deserialization of Untrusted Data

10 Minutes

.25 CPE

LAB 269 – Defending Node.js Applications Against Deserialization of Untrusted Data

10 Minutes

.25 CPE

LAB 270 – Defending C# Applications Against Deserialization of Untrusted Data

10 Minutes

.25 CPE

LAB 271 – Defending Java Applications Against SSRF

10 Minutes

.25 CPE

LAB 272 – Defending Python Applications Against SSRF

10 Minutes

.25 CPE

LAB 273 – Defending Node.js Applications Against SSRF

10 Minutes

.25 CPE

 Home/ Course Catalog/ Subject Matter/OWASP Web

OWASP Web

Courses

Training & Product

Solutions

About Us