Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
An Introduction to OWASP Top 10 Vulnerabilities
Rating: 4.5 out of 5(1,858 ratings)
24,596 students

An Introduction to OWASP Top 10 Vulnerabilities

Learn the fundamentals of security
Created byScott Cosentino
Last updated 9/2023
English

What you'll learn

  • Injection Vulnerabilities
  • Broken Authentication
  • Sensitive Data Exposure
  • XML External Entities
  • Broken Access Control
  • Security Misconfiguration
  • Cross-Site Scripting (XSS)
  • Insecure Deserialization
  • Using Components with Known Vulnerabilities
  • Insufficent Logging and Monitoring

Course content

1 section12 lectures1h 57m total length

  • A1 - SQL Injection17:30
  • A1 - Command Injection10:20
  • A2 - Broken Authentication9:09

    Explore how broken authentication enables attackers through credential stuffing, brute force, and weak recovery, and learn effective mitigations like multi-factor authentication, strong passwords, and server-side session management.

  • A3 - Sensitive Data Exposure15:12
  • A4 - XML External Entities (XXE)23:00

    Learn to identify and exploit xml external entities (xxe) vulnerabilities, including password file leakage and ssrf via burp suite, and apply fixes using whitelisting and safer parsers in real apps.

  • A5 - Broken Access Control7:13
  • A6 - Security Misconfiguration7:05
  • A7 - Cross Site Scripting (XSS)13:32
  • A8 - Insecure Deserialization6:01
  • A9 - Using Components with Known Vulnerabilities7:57
  • A10 - Insufficient Logging & Monitoring0:10
  • Learn More For Free!0:06

Requirements

  • A basic understanding of programming

Description

The purpose of this course is to provide students with a fundamental understanding of computer security, through the study of the top 10 most common security vulnerabilities, as provided by OWASP.

By the end of this course, students will have enough of an understanding to make design choices that preserve the security of the applications they own. This course can also serve as a way to gain foundations required to proceed to more advanced security topics.

Who this course is for:

  • Beginner programmers and security researchers looking to learn about computer security

Report abuse