Security Testing
OWASP Top 10, penetration testing basics, SQL injection, XSS, CSRF. Think like an attacker to defend like a pro.
advanced
3 courses
15 lessons
This path requires a Pro subscription
Subscribe to unlock all lessons, challenges, and bug hunts.
1
Security Testing Fundamentals
The mindset, vocabulary, and landscape of security testing. Why every tester needs to think about security.
advanced
~3.0h
-
Requires subscriptionWhy Security Testing Mattersreading +10 XP
-
Requires subscriptionThe OWASP Top 10 Overviewreading +15 XP
-
Requires subscriptionThinking Like an Attackerreading +15 XP
-
Requires subscriptionSecurity Testing vs Penetration Testingreading +15 XP
-
Requires subscriptionSetting Up a Safe Practice Environmentreading +15 XP
2
Common Vulnerabilities
The vulnerabilities that cause the most damage. Understand how they work so you can find them before attackers do.
advanced
~5.0h
-
Requires subscriptionSQL Injectionreading +20 XP
-
Requires subscriptionCross-Site Scripting (XSS)reading +20 XP
-
Requires subscriptionBroken Authenticationreading +15 XP
-
Requires subscriptionBroken Access Controlreading +15 XP
-
Requires subscriptionCross-Site Request Forgery (CSRF)reading +15 XP
3
Security Testing in Practice
Apply what you've learned. Tools, techniques, and workflows for integrating security testing into your daily work.
advanced
~4.0h
-
Requires subscriptionSecurity Headers and HTTPSreading +15 XP
-
Requires subscriptionAPI Security Testingreading +15 XP
-
Requires subscriptionAutomated Security Scanningreading +15 XP
-
Requires subscriptionWriting Security Bug Reportsreading +15 XP
-
Requires subscriptionCapstone: Security Assessmentexercise +25 XP