Ideal for teams that…
Application and infrastructure security — a workshop for technical teams.
Key web application vulnerabilities such as Path Traversal, LFI/RFI, SQL Injection, Command Injection, XSS, CSRF, Brute-force, cookie manipulation, and session hijacking
The mission and goals of OWASP and the current OWASP Top 10 list
How to use tools for testing web application security
Practical skills in detecting and analyzing vulnerabilities in applications
Best practices for securing web applications against common attacks
What we actually do
- · Mission and goals
- · OWASP Top 10 overview
- · Path Traversal
- · Local File Inclusion (LFI)
- · Remote File Inclusion (RFI)
- · SQL Injection
- · Command Injection
- · Cross-Site Scripting (XSS)
- · Cookie manipulation and Session Hijacking
- · Brute-force attacks
- · Cross-Site Request Forgery (CSRF)
- · Vulnerabilities in file upload mechanisms
From brief to retro in 30 days.
Brief & diagnosis
A call with the team lead + a short survey for participants. We define goals, gap and context.
Program customization
We adapt modules, case studies and code examples to your stack. Approval in 5 days.
Workshop
Trainer-led sessions, hands-on, code review. Mentor available between sessions too.
Retro + report
Outcome report for the team and lead. 30 days of consulting included.
Send a brief. We'll reply within 1 day.
After a short brief we'll prepare a program and a quote. No obligations — it's just a starting point.
Thank you!
We'll get back to you within 1 business day.
Other programs for teams
See all →AWS Cloud Security Training
Application and infrastructure security — a workshop for technical teams.
Azure Cloud Security Training
Application and infrastructure security — a workshop for technical teams.
Container Security Management Training
Application and infrastructure security — a workshop for technical teams.