Secure Coding - Secure application development

Name: Secure Coding - Secure application development
Rating: 4.4 (12915 reviews)

Methodologies and tools to develop secure applications

Created byG.L. Golinelli

Last updated 6/2025

English

What you'll learn

Secure programming of application code
Main vulnerabilities inherent in applications
Secure coding
Owasp methodologies and standards
Understand how to mitigate and not introduce vulnerabilities in applications
Web Application Security

Course content

8 sections • 41 lectures • 2h 33m total length

Introduction3:16
Introduction to laws, standards and guidelines on cyber security.
Attack scenario statistics in the IT world4:24
Attack agents, types of attack and statistics on the main vulnerabilities.

Software development lifecycle2:53
Techniques, methodologies and tools available in the software development life cycle to increase the security of the developed applications.
Risk analysis4:11
Risk analysis and asset vulnerability research
Threat modeling6:31
Threat modeling - exercise3:03
SAST (Static Application Security Testing) tools3:10
The OWASP community2:30
The methodologies and guidelines of OWASP (Open Web Application Security Project) for the secure development of applications
Guidelines for secure coding2:00
Verification test

Secure Coding guidelines for input validation2:25
SQL Injection vulnerability3:54
SQL Injection vulnerability Lab3:50
LDAP and XPath Injection vulnerabilities3:53
Cross-Site Scripting (XSS) vulnerability4:00
Cross-Site Scripting (XSS) vulnerability Lab3:33
OS Command Injection vulnerability2:47
OS Command Injection vulnerability Lab4:43
LFI (Local File Inclusion) and RFI (Remote File Inclusion) vulnerabilities2:37
LFI / RFI vulnerabilities Lab3:53
Unvalidated File Upload vulnerability1:19
Unvalidated File Upload vulnerability Lab4:22
Buffer Overflow vulnerabilities4:38
XXE (XML External Entities) Vulnerabilities2:47
XXE (XML External Entities) Lab4:37
Insecure Deserialization2:26
Verification test

Requirements

Knowledge of programming languages

Description

The course is suitable for programmers, project managers or software architects and provides indications on the methodological bases, standards (as Owasp best practices) and tools (as SAST and DAST tools) for developing secure code, avoiding the inclusion of bugs or vulnerabilities in the programs. Various practical workshops are carried out to support the theoretical treatment, which show the use of the tools and the mitigation of some of the vulnerabilities most frequently found in web or desktop applications.

Disclaimer

The information contained in this course is distributed "as is" and is intended for educational purposes only. While the author/instructor has made every effort to ensure the accuracy of the information contained in this course, the author/instructor assumes no responsibility for any loss, damage, inconvenience, or disruption caused to third parties due to any action taken or not taken based on this course. Despite all precautions taken, errors or omissions may have inadvertently crept into this course. The author/instructor would appreciate it if such errors or omissions were brought to their attention for possible correction.

All trademarks and brands mentioned in this course are for educational and explanatory purposes only, not for commercial purposes, and are the property of their respective owners.

Who this course is for:

Software developers
Project managers
Software architects

Secure Coding - Secure application development

What you'll learn

Explore related topics

Course content

Introduction2 lectures • 8min

Methodologies for developing secure code7 lectures • 24min

VAPT (Vulnerability Assessment and Penetration Test) of applications4 lectures • 33min

Input validation16 lectures • 56min

Authentication of applications3 lectures • 9min

Security of Session Management3 lectures • 8min

Secure Coding Practices for Cryptography4 lectures • 14min

References2 lectures • 1min

Requirements

Description

Who this course is for: