NOTE: This is ONE training course that is being split over the course of TWO days, FOUR hours each day. Wednesday, December 15, AND Friday, December 17. Friday will be a continuation from Wednesday. Both training days will begin at 7 am/PST

Software developers are the foundation of any application. As software developers author code that makes up a web application or API, they need to embrace and practice a wide variety of secure coding techniques. The OWASP Top Ten (2021) is an OWASP documentation project that lists critical security risks that should be addressed in every software development project. This document was written to assist those new to secure development.

This training is targeted for developers to help them write more secure code. This class will include both lectures and a variety of demonstrations. We'll also do a few different labs together at the end of the class on day 2.

We will cover the following topics:

A01:2021-Broken Access Control

A02:2021-Cryptographic Failures

A03:2021-Injection

A04:2021-Insecure Design

A05:2021-Security Misconfiguration

A06:2021-Vulnerable and Outdated Components

A07:2021-Identification and Authentication Failures

A08:2021-Software and Data Integrity Failures

A09:2021-Security Logging and Monitoring Failure

A10:2021-Server-Side Request Forgery