OWASP: Threats Fundamentals

OWASP: Threats Fundamentals

4.31 (1871 reviews)
Udemy
platform
English
language
Microsoft
category
4,849
students
3.5 hours
content
Nov 2018
last update
$49.99
regular price

What you will learn

Understand the top 10 threats to any application

Learn and identify authentication and session threats

Avoid security misconfiguration threats

Prevent sensitive data exposure

Use function level access control to improve security

Description

The OWASP: Threats Fundamentals course is part of a series of training courses on the Open Web Application Security Project (OWASP). This course covers the fundamental concepts and techniques to identify different types of threats. The course also teaches the students to improve the security by avoiding misconfigurations, data exposure and insecure cryptography.

The OWASP Foundation was established with a purpose to secure the applications in such a way that they can be conceived, developed, acquired, operated, and maintained in a trusted way. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. This course along with the other courses in the series on OWASP provides a basic overview of the concepts that form an integral part of the OWASP core values.

Content

Chapter 01 - Understanding Threats

Topic A: OWASP Overview - Part 1
OWASP Overview - Part 2
OWASP Overview - Part 3
Topic B: Top Ten Threats - Part 1
Top Ten Threats - Part 2
Top Ten Threats - Part 3
Review - Question

Chapter 02 - Session Security

Topic A: Authentication and Session Threats - Part 1
Authentication and Session Threats - Part 2
Authentication and Session Threats - Part 3
Topic B: Threat Examples - Part 1
Threat Examples - Part 2
Threat Examples - Part 3
Review - Question

Chapter 03 - Security Misconfiguration

Topic A: Security Misconfiguration - Part 1
Security Misconfiguration - Part 2
Security Misconfiguration - Part 3
Topic B: Misconfiguration Examples - Part 1
Misconfiguration Examples - Part 2
Misconfiguration Examples - Part 3
Review - Question

Chapter 04 - Data Exposure and Cryptography

Topic A: Sensitive Data Exposure - Part 1
Sensitive Data Exposure - Part 2
Sensitive Data Exposure - Part 3
Topic B: Insecure Cryptographic Storage - Part 1
Insecure Cryptographic Storage - Part 2
Insecure Cryptographic Storage - Part 3
Topic C: Function Level Access Control - Part 1
Function Level Access Control - Part 2
Function Level Access Control - Part 3
Review - Question

Screenshots

OWASP: Threats Fundamentals - Screenshot_01OWASP: Threats Fundamentals - Screenshot_02OWASP: Threats Fundamentals - Screenshot_03OWASP: Threats Fundamentals - Screenshot_04

Reviews

Tuta
August 16, 2023
The course provides a good understanding of the OWASP top ten threats. But it needs to be updated for the 2021 standard.
Daniel
July 6, 2023
Much of the overview around applications is way too old. Even for 2018 it was old. I'm not saying that this stuff still doesn't exist in todays world, the overview is not balanced enough to be a current course. Much of the review content is completely based on the OWASP site which has changed many times over. I have a background in dev, so I have no trouble understanding what I'm looking for. However, if you have no background in dev, there's not enough context and this course is not for you.
Phillip
May 6, 2023
Informs exactly as it advertises. This is a great stepping stone toward other more advanced classes in Web Application Intrusion.
JP
August 31, 2022
A little content heavy, outdated top 10 from OWASP, did not explain the top 10, could be more dynamic as well, but the explanation was clear in general.
Conrad
August 23, 2022
Example helped with understanding of each topic. I did not know that it was not going to cover the full list. Even though the list being referenced is outdated, the information is still valuable as these threats still exist.
Javier
August 17, 2022
es un curso muy desactualizado, se enfoca en la mayoria de caso en la vulnerabilidades de .net, no tiene traducción al español
Anonymized
July 23, 2022
This course was super helpful. Thank You! However, it needs to get updated as per the latest structure i.e at least once in a year. The top 10 OWASP list was of 2013 and not of the year 2022.
Anonymized
July 22, 2022
too basic. And, I personally found most of the information useless & the crux of the course could have been covered in 45 min course.
Anonymized
July 21, 2022
The course is a great overview of the specified security topics. It should be a reference point for devs and managers. Great introduction to OWASP. Not for fully fledged and experienced computer scientists.
Sebastian
July 19, 2022
Very interesting and complete. Hope there's an updated version including for example the current OWASP listing.
Anonymized
July 18, 2022
Some content can be made smaller, rather than going through the wiki page in detail say for episode 5, it would have been helpful to have content in the course itself. Also could not get the goal of chapter 1... was it just and introduction or are we expected to go deeper into owasp wiki.
SUSAN
July 6, 2022
The course information is somewhat dated, the OWASP top 10 is completely different from 2013, 9 yrs ago (2018 update did not refresh this info.) Recommend periodically updating to keep up with new threats and new technology.
Akshit
May 4, 2022
Currently OWASP 2021 is going on and this course is still based on 2013. Also It doesn't explain all the 10 OWASP 2013 in one course, and there is no links to the other parts in the description. Coding examples were nice and helpful in understanding how these vulnerabilities can be exploited in code.
Lisa
December 8, 2021
Overall the course is good, however, an updated version with the latest OWASP top 10 would be more relevant.
Mustaq
November 27, 2021
Its excellent and more informative, we will go through it deeply and try to make us of it to implement in our organization

Charts

Price

OWASP: Threats Fundamentals - Price chart

Rating

OWASP: Threats Fundamentals - Ratings chart

Enrollment distribution

OWASP: Threats Fundamentals - Distribution chart
1904290
udemy ID
9/10/2018
course created date
11/22/2019
course indexed date
Bot
course submited by