Training agenda
  1. Introduction to web application security
    • Web application architecture
    • OWASP Top 10 2021
  2. Vulnerability analysis (exploitation, defense, case studies)
    • Cross-site scripting (XSS)
    • Cross-Site Request Forgery (CSRF)
    • Directory Traversal
    • Unrestricted File Upload
    • Insecure Direct Object Reference (IDOR)
    • SQL/NoSQL injection
    • Denial of Service
  3. Cyber hygiene