Overview
The HTML5 Developer learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed to provide front-end developers responsible for holding the style and interactivity backbone together with a deeper understanding of HTML5 – and building a strong line of defense.
Course concepts include:
- HTML5 security features
- How to infuse software security into the development lifecycle
- Working knowledge of ASP.net, SWL, high-level scripting languages, version control and CMS systems
- AWA 101 – Fundamentals of Application Security
- AWA 102 – Secure Software Concepts (UPDATE PENDING)
- COD 102 – The Role of Software Security
- COD 103 – Creating Software Security Requirements
- COD 104 – Designing Secure Software
- COD 105 – Secure Software Development (UPDATE PENDING)
- COD 106 – The Importance of Software Integration and Testing
- COD 107 – Secure Software Deployment
- COD 108 – Software Operations and Maintenance
- DES 101 – Fundamentals of Secure Architecture
- COD 251 – Defending AJAX-Enabled Web Applications
- COD 255 – Creating Secure Code: Web API Foundations
- COD 256 – Creating Secure Code: Ruby on Rails Foundations
- COD 259 – Node.js Threats & Vulnerabilities
- COD 281 – Java Security Model
- COD 285 – Developing Secure Angular Applications
- DES 204 – Role of Cryptography in Application Development
- DES 212 – Architecture Risk Analysis & Remediation
- DES 224 – Applying OWASP 2017: Mitigating Sensitive Data Exposure
- DES 228 – Applying OWASP 2017: Mitigating Cross Site Scripting (XSS)
- DES 232 – Mitigating OWASP 2021 Injection (NEW)
- DES 234 – Mitigating OWASP 2021 Cryptographic Failures (NEW)
- ENG 205 – Fundamentals of Threat Modeling
- ENG 211 – How to Create Application Security Design Requirements
- ENG 212 – Implementing Secure Software Operations
- LAB 223 Defending Node.js Against SQL Injection (NEW)
- LAB 228 Defending Against Weak AES ECB Mode Encryption (Java) (COMING SOON)
- LAB 229 Defending Against Weak PRNG (Java) (COMING SOON)
- LAB 230 Defending Java Against XSS (NEW)
- LAB 233 Defending Node.js Against XSS (NEW)
- LAB 234 Defending Against Parameter Tampering (Java) (COMING SOON)
- LAB 235 Defending Against Plaintext Password Storage (Java) (COMING SOON)
- LAB 237 Defending Java from SQL Injection (NEW)
- LAB 240 Defending Java Against eXternal XML Entity (XXE) Vulnerabilities (NEW)
- LAB 242 Defending Node.js Against eXternal XML Entity (XXE) Vulnerabilities (NEW)
- LAB 244 Defending Java Against Security Misconfiguration (NEW)
- LAB 245 Defending Against Plaintext Password Storage (Node.js) (COMING SOON)
- LAB 246 Defending Against Weak AES ECB Mode Encryption (Node.js) (COMING SOON)
- LAB 247 Defending Against Weak PRNG (Node.js) (COMING SOON)
- LAB 248 Defending Against Parameter Tampering (Node.js) (COMING SOON)
- COD 308 – Common ASP.NET MVC Vulnerabilities and Attacks
- COD 309 – Securing ASP.NET MVC Applications
- COD 352 – Creating Secure JavaScript and jQuery Code
- COD 361 – HTML5 Secure Threats
- COD 362 – HTML5 Built in Security Features
- COD 363- Securing HTML5 Data
- COD 364 – Securing HTML5 Connectivity
- COD 372 – Testing for OWASP 2017: Sensitive Data Exposure
- COD 376 – Testing for OWASP 2017: Cross Site Scripting (XSS)
- DES 311 – Creating Secure Application Architecture
- DSO 304 – Securing API Gateways in a DevSecOps Framework
- DSO 307 – Secure Secrets Management
- ENG 312 – How to Perform a Security Code Review
- SDT 301 Testing for Injection (NEW)
- SDT 303 Testing for Cryptographic Failures (NEW)
Learning Path Details
Number of Courses: 55
Total Duration: 16 hours
Total CPE Credits: 19