Join us for Wild West Hackin’ Fest Deadwood virtual conference! Register Here

Practical OWASP TOP 10 with Kevin Johnson

Course Authored by .

In this course, Secure Ideas will walk attendees through the various items in the latest OWASP Top 10 and corresponding controls.

On-Demand $435.00

Course Length: 12 Hours

Includes a Certificate of Completion



Next scheduled date: Content is loading, please wait.

Description

In this course, Secure Ideas will walk attendees through the various items in the latest OWASP Top 10 and corresponding controls.

Since 2003, OWASP has released the Top 10 Most Critical Web Application Security Risks list. It has been the basis of much development and consternation, but do you really understand what each of these issues and their corresponding controls mean? As a developer, do you know how to prevent these issues? As a security professional, do you truly know what they are and how to evaluate their effectiveness?

Students will leverage modern applications to explore how the vulnerabilities work and how to find them in their own applications. Check out our other Secure Ideas courses here.

Syllabus

Introduction

    • What is the Top 10?
        • Update Process

        • Past Versions

        • Why It Matters

OWASP Top 10

    • A01:2021 – Broken Access Control

    • A02:2021 – Cryptographic Failures

    • A03:2021 – Injection

    • A04:2021 – Insecure Design

    • A05:2021 – Security Misconfiguration

    • A06:2021 – Vulnerable and Outdated Components

    • A07:2021 – Identification and Authentication Failures

    • A08:2021 – Software and Data Integrity Failures

    • A09:2021 – Security Logging and Monitoring Failures

    • A10:2021 – Server-Side Request Forgery (SSRF)

    • Summary of Proactive Controls

FAQ

Who Should Take This Course
Any developers and or security professionals with responsibilities related to application security, including both offensive and defensive roles

About the Instructor

Pixel splash background
Kevin Johnson
Kevin Johnson
"Professionally Evil"
Bio

Kevin Johnson is CEO of Secure Ideas, a consulting company dedicated to security testing and training. Kevin passionately advocates for cybersecurity through his work with Secure Ideas, as a global board member for OWASP and as a faculty member at IANS. During his over 30 years in the industry, Kevin acted as an instructor and author for the SANS institute.

On-Demand

Antisyphon's On-Demand classes give you flexible, self-paced access to the same high-quality training our live events are known for. Whether you're diving into forensics, cloud security, or offensive tooling, each course includes:

  • Full access to video recordings, slides, and downloadable resources
  • Hands-on labs and virtual machines to reinforce real-world skills
  • Cyber Range access for immersive practice (select courses)
  • Dedicated Discord support from instructors and peers
  • Certificates of participation upon completion

Start learning when it works for you!
No deadlines, no pressure. Just real, practical cybersecurity training on your schedule.

Purchase:
Content is loading, please wait.
Shopping Cart

No products in the cart.