The major cause of web-service and web application insecurity is insecure software development practices. This highly intensive and interactive 4-hour seminar (split over two sessions) will provide essential application security training for web application and web-service developers and architects.
The class is a combination of lecture, security testing demonstration and code review. Students will learn the most common threats against applications. More importantly, students will learn how to code secure web solutions via defense-based code samples.
Our focus will be web application security basics:
- OWASP Top Ten 2017
- OWASP Top Ten Proactive Controls v3
- OWASP ASVS 3.1+
