<aside> <img src="https://s3-us-west-2.amazonaws.com/secure.notion-static.com/320f58c6-0946-4ffe-a2e4-ea193eaadbda/Superellipse_chamfered_square.svg" alt="https://s3-us-west-2.amazonaws.com/secure.notion-static.com/320f58c6-0946-4ffe-a2e4-ea193eaadbda/Superellipse_chamfered_square.svg" width="40px" /> Our Webapp & API security workshop covers both the basics of secure coding and framework-specific skills. It stands above other courses like it — expect 3 days of intense hands-on learning, with many topics on the table. The basics are explained using a platform-agnostic approach and examples in Python; students can also learn platform/framework related patterns in their framework of choice (eg. Node.js). The course covers both offense and defense: detecting and exploiting vulnerabilities, finding them in the source, and – most importantly – mitigating them and preventing them from the start by applying secure development patterns. Practical approaches to manual and automated testing are included. We know that hands-on exercises are the most enticing and effective way to learn, so we give attendees the opportunity to identify and fix security vulnerabilities interactively within our labs and own vulnerable app. The course leads up to our secure webappdev-related (Java/Kotlin, Go, etc.) masterclasses.




Empowering developers to write secure software by design and be able to verify the implementations themselves. This course is one of the fundamental requirements for developers in practical security champions implementation and boosts the security maturity level within your organisation.

Topics highlight