This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Manila/SummerSecureCoding
OWASP Secure Coding 2015
Practice you skills in coding, be a Better Coder
About the Instructor
Jim Manico is the founder of Manicode Security where he trains software developers on secure coding and security engineering. He has a 18 year history building software as a developer and architect. Jim is a frequent speaker on secure software practices and is a member of the JavaOne rockstar speaker community. Jim is also a Global Board Member for the OWASP foundation where he helps drive the strategic vision for the organization. He is the author of "Iron-Clad Java: Building Secure Web Applications" from McGraw-Hill. For more information,see http://www.linkedin.com/in/jmanico.
Training Modules
Core Modules
- Introduction to Application Security (1hr)
- HTTP Basics(1hr)
- HTTP Basics Labs (1hr)
- SQL and other Injection (1.5hrs)
- SQL Injection Labs (1hr)
- Authentication (2.5 hrs)
- Authentication Labs (1hr)
- Access Control (1hr)
- Access Control Labs (1hr)
- Cross Site Request Forgery and Clickjacking (1.5 hrs)
User Interface Security Series
- Content Spoofing and HTML Hacking (1hr)
- Basic XSS Defense (1.5hr)
- Advanced XSS Defense (1hr)
- Content Security Policy (1hr)
- Basic XSS Labs (1hr)
Crypto Modules
- Applied Crypto Storage Basics (2hrs)
- HTTPS/TLS Best Practices (1hr)
Additional Topics
- Mobile Security Overview (1.5 hrs)
- Forms and Multi-form Workflow Security Considerations (1hr)
- Secure SDLC and Process Improvement (1hr)
- Application Layer Intrusion Detection (1hr)
- Webservice Security Overview (1hr)
- HTML5 Security and CORS Considerations (1hr)
- File Upload and File IO Security (1hr)
