Overview
The Front-end Developer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It provides a solid foundation for using markup languages, design, and client-side scripts, and a framework to create secure environments for everything that users touch.
Course concepts covered:
- Deep dive on HTML, CSS and responsive web development
- How vulnerabilities are discovered and exploited
- How to build a strong line of defense
- AWA 101 – Fundamentals of Application Security
- AWA 102 – Secure Software Concepts (UPDATED)
- COD 102 – The Role of Software Security
- COD 103 – Creating Software Security Requirements
- COD 104 – Designing Secure Software
- COD 105 – Secure Software Development
- COD 106 – The Importance of Software Integration and Testing
- COD 107 – Secure Software Deployment
- COD 108 – Software Operations and Maintenance
- DES 101 – Fundamentals of Secure Architecture
- API 210 Mitigating APIs Lack of Resources & Rate Limiting (NEW)
- API 211 Mitigating APIs Broken Object Level Authorization (NEW)
- API 213 Mitigating APIs Mass Assignment
- API 214 Mitigating APIs Improper Asset Management
- COD 214 – Creating Secure GO Applications
- COD 251 – Defending AJAX-Enabled Web Applications
- COD 255 – Creating Secure Code: Web API Foundations
- COD 256 – Creating Secure Code: Ruby on Rails Foundations
- COD 258 – Creating Secure PHP Web Applications
- COD 259 – Node.js Threats & Vulnerabilities
- COD 285 – Developing Secure Angular Applications
- COD 286 – Creating Secure React User Interfaces (UPDATED)
- DES 204 – Role of Cryptography in Application Development
- DES 212 – Architecture Risk Analysis & Remediation
- DES 232 – Mitigating OWASP 2021 Injection (NEW)
- DES 233 – Mitigating OWASP 2021 Identification and Authentication Failures (NEW)
- DES 234 – Mitigating OWASP 2021 Cryptographic Failures (NEW)
- DES 235 Mitigating OWASP 2021 Insecure Design (NEW)
- DES 236 Mitigating OWASP 2021 Broken Access Control (NEW)
- DES 237 Mitigating OWASP 2021 Security Misconfiguration (NEW)
- DES 238 Mitigating OWASP 2021 Server-Side Request Forgery (SSRF) (NEW)
- DES 239 Mitigating OWASP 2021 Software and Data Integrity Failures (NEW)
- DES 240 Mitigating OWASP 2021 Vulnerable and Outdated Components (NEW)
- DES 241 Mitigating OWASP 2021 Security Logging and Monitoring Failures (NEW)
- ENG 205 – Fundamentals of Threat Modeling
- ENG 211 – How to Create Application Security Design Requirements
- ENG 212 – Implementing Secure Software Operations
- LAB 223 Defending Node.js Applications Against SQL Injection (NEW)
- LAB 233 Defending Node.js Applications Against XSS (NEW)
- LAB 242 Defending Node.js Applications Against eXternal XML Entity (XXE) Vulnerabilities (NEW)
- LAB 245 Defending Node.js Applications Against Plaintext Password Storage (NEW)
- LAB 246 Defending Node.js Applications Against Weak AES ECB Mode Encryption (NEW)
- LAB 247 Defending Node.js Applications Against Weak PRNG (NEW)
- LAB 248 Defending Node.js Applications Against Parameter Tampering (NEW)
- LAB 262 Defending Node.js Applications Against Sensitive Information in Error Messages
- COD 352 – Creating Secure JavaScript and jQuery Code
- COD 361 – HTML5 Secure Threats
- COD 362 – HTML5 Built in Security Features
- COD 363- Securing HTML5 Data
- COD 364 – Securing HTML5 Connectivity
- DES 311 – Creating Secure Application Architecture
- DSO 304 – Securing API Gateways in a DevSecOps Framework
- DSO 307 – Secure Secrets Management
- ENG 312 – How to Perform a Security Code Review
- SDT 301 Testing for Injection (NEW)
- SDT 316- Testing for Use of Hard-Coded Credentials
Learning Path Details
Number of Courses: 56
Number of Labs: 17
Total Duration: 18 hours
Total CPE Credits: 22