The Open Web Application Security Project (OWASP) Top 10 is widely recognized as a powerful awareness document that represents a broad consensus among security experts about the most critical security risks to web applications. For many companies, security awareness usually starts with the OWASP Top 10. In practice, many companies have difficulty applying the mitigations, often due to misinterpretation.
This is due to the following facts:
In this course, we will walk through the OWASP Top 10 together with the developers and see what the most common mistakes are in practice. Each topic will be highlighted, and vulnerabilities and exploits will be performed on various demo environments that are made available especially for this purpose.
After exploiting the vulnerabilities, we will battle them hands-on in a test application that has been adapted to the users own development (language) preferences.