Learning Paths

Skills

Secure Coding

11 courses
21 hours
Skill IQ

Secure Coding Learning Path

Embark on an exciting journey to become a proficient, secure coder with our comprehensive learning path. This curriculum is designed to gradually build your knowledge and skills, preparing you for the challenges of writing secure code in today's complex digital landscape.

This learning path encompasses video courses, guided practical exercises, and hands-on content to ensure a holistic learning experience. You will master the concept of secure coding, starting with basic principles and then moving to more advanced applications in real-world scenarios.

You can learn more about web app pen-testing in the Web App Pen Testing

Courses in this path

The OWASP Top 10

The OWASP Top 10 represents a broad consensus about the most critical security risks to web applications. The information provided by OWASP provides a valuable framework for developing secure code by highlighting the most critical risks and providing guidance on how to prevent them. In addition, it helps developers write secure code by raising awareness, providing education, and offering a methodology for managing and mitigating risks.

OWASP Top 10: The Big Picture

by Hampton Paulk
1h 24m
(154)

OWASP Top 10: What's New

by Gavin Johnson-Lynn
1h 18m
(45)

API Security with the OWASP API Security Top 10

by Gavin Johnson-Lynn
1h 59m
(29)

Understanding Common Vulnerabilities in Code

In this section, you will delve deeper into the mechanics and code behind the most common vulnerabilities. Understanding how the vulnerabilities are exploited in a general sense will arm you with the knowledge to identify the behavior in your code base. To better understand the impact of these exploits, there are hands-on labs included that cover some of the most commonly exploited vulnerabilities.

Secure Coding: Identifying and Mitigating XML External Entity (XXE) Vulnerabilities

by Peter Mosmans
1h 9s
(33)

Secure Coding: Preventing Broken Access Control

by Gavin Johnson-Lynn
1h 55m
(33)

Secure Coding: Preventing Insecure Deserialization

by Peter Mosmans
1h 2m
(67)

Secure Coding: Preventing Insufficient Logging and Monitoring

by Peter Mosmans
1h 23m
(60)

Secure Coding: Preventing Sensitive Data Exposure

by Timothy Ghanim
1h 23m
(68)

Secure Coding: Using Components with Known Vulnerabilities

by Peter Mosmans
1h 13m
(49)

Language Specific Best Practices

Learn the best practices and considerations that are specific to your technology stack.

Secure Coding in ASP.NET Core

by Gavin Johnson-Lynn
4h 39m
(21)

Secure Coding with C#

by Alexander Tushinsky
3h 35m
(30)

Try for free

Get this learning path plus top-rated picks in tech skills and other popular topics.

Your 10 day free trial includes

Expert-led courses

Keep up with the pace of change with thousands of expert-led, in-depth courses.

For teams

Give up to 50 users access to our full library including this path free for 30 days

In this path, you will learn about the OWASP top 10, an industry-standard collection of knowledge around the most common and broadly applicable vulnerabilities. Then, leveraging that base knowledge, you will delve deeper into a technical understanding of the mechanics behind the code practices responsible for those vulnerabilities, with an opportunity to get hands-on practice. Lastly, best practices around secure coding in specific languages will enable you to apply your knowledge to your specific tech stack.

Experience

Development experience and an interest in security. Or alternatively, security testing experience with an interest in the development concerns associated with common vulnerabilities.

Learn with the best

Hampton Paulk

Hampton began learning and creating in the digital realm over 20 years ago and enjoys helping others improve and work toward their goals.

Gavin Johnson-Lynn

Gavin has 20 years’ experience writing software in regulated environments and for global organisations. The last five years of his development career were spent with a focus on security, becoming the security lead for a significant payments project at a FTSE 100 company. He has experience with languages from COBOL to .Net and now often finds those skills useful when developing with Python. Gavin's experience of software security revealed a passion for security, leading him to become a speaker a... more

Peter Mosmans

Peter started out in the nineties as software engineer working on internet banking applications for various European financial institutions. After developing, he moved to the role of defending and designing systems and networks for high-availability websites. Since 2004 he started specializing in breaking: pentesting complex and feature-rich web applications. Currently he leads a global team of highly skilled penetration testers as lead pentester. He is a contributor to several open-source penet... more

Timothy Ghanim

Timothy is a software developer who's been around for some time now. He started playing with code at an early age and has picked up alot of expertise in many areas of software development on different platforms using many programming languages. He also is very well familiar with many associated technologies and development stacks and has run through the software development lifecycle many times so far. In the past decade, Timothy's focus was on software security, specifically on writing secure c... more

Alexander Tushinsky

Alex has spent the past 30+ years working as a software developer, application architect, cybersecurity professional, and technical trainer. He is a lifelong learner and holds over 20 active certifications in IT. Alex is a Microsoft Certified Trainer and enjoys sharing his knowledge with others. He has taught at Rutgers University, Bergen Community College, County College of Morris, College of Southern Nevada, and UNLV. He holds a BS in Software Development and a Masters in Cybersecurity from We... more

Contact Sales

Secure Coding

Secure Coding Learning Path