LIVE + On-Demand = Powerful Skills
Get access to instructor-led training, on-demand courses, and live hacking in a single solution.
This 30-day, pre-defined training experience combines online training courses with an instructor-led hacking event. It is the most cost-effective way to close skill gaps within a month and test drive our enterprise solution.
- Hands-on – nothing gets more real than hacking a vulnerable e-commerce application
- Relevant – learn Web application threats, attacks, vulnerabilities, and defensive measures
- Convenient – cloud-based, 24/7 access with nothing to install or schedule. Just sign up and show up
- Flexible – purchase individual “tickets” or user packs that can be used for any monthly Bootcamp
Web Application Security Bootcamp at-a-Glance
Learners start with courses on the OWASP Top Ten threats and attacker techniques. Then they are thrust into a real-life experience and take on Shred Skateboards Cyber range with the aid of an expert instructor. Training wraps up with additional courses and individual cyber range play.
Players of all skill levels will walk away with enhanced AppSec skills and the reports to prove it.
Start with handpicked courses
to boost security awareness
Build foundational knowledge with OWASP Top Ten and other courses
For 30 days, you’ll have access to courses that help you learn the principles of Web Application Security and its role in software development and deployment.
The OWASP Top Ten courses (~10 minutes) are particularly helpful to prepare for the hands-on hacking event.
- Testing for OWASP 2017 Mitigations Series (10)
- Applying OWASP 2017 Mitigations Series (10)
- Fundamentals of Application Security
- Fundamentals of Secure Cloud Development
- Fundamentals of Database Security
- Creating Secure Code – Web API Foundations
- Secure Software Development
- Software Operations and Maintenance
- Performing Vulnerability Scans
Join a hands-on exercise
like no other
Hands-on Hacking >>
Bring skill and attitude to the ½ day live hacking event.
After a week of optional online training, you’ll become the attacker – employing your new skills to dive into a real-life experience with Shred Skateboards’ cyber range.
A seasoned instructor will introduce you to the platform, guide you through the experience, and help you understand how an attacker thinks. During the event, players can follow along with the instructor or go off-road and explore on their own.
|12:00 PM||12:15 PM||15||Welcome & Opening Remarks|
|12:15 PM||12:45 PM||30||Kickoff, Thinking like an Attacker, tips on getting started|
|12:45 PM||1:30 PM||45||Attack the vulnerable site (Reconnaissance)|
|1:30 PM||1:45 PM||15||First Learning Lab: Parameter Tampering|
|1:45 PM||2:45 PM||60||Attack the vulnerable site (Try Parameter Tampering)|
|2:45 PM||3:00 PM||15||Second Learning Lab: Cross-Site Scripting|
|3:00 PM||4:00 PM||60||Attack the vulnerable site (Try Cross-Site Scripting)|
- Learning Labs are conducted throughout
- Live, instant support keeps everyone informed
- Automated scoring keeps players engaged and competitive
Post-Event: Honing of Skills
For the last two weeks, learners continue to expand their knowledge with individual cyber range play and courses covering APIs, database security, code-level security, and defensive measures.
with help assets and expert support
Fully Supported >>
Learners receive a welcome kit on the first day of the program that details what to expect and a code to access training.
For the full 30 days, we provide remote support via online chat built into the platform and email.
All players have access to on-demand learning labs specific to cyber range challenges, as well as cheat sheets, tips, hints, and experts if they get stuck.
Meet Your Instructor
Kevin has led hundreds of live learning and hacking sessions for many of the world’s most notable companies including HP, Microsoft, Accenture, and Qualcomm. He is also a developer by trade, security engineer by fate, and trainer at heart.
He is passionate about security and embraces novel, engaging training techniques like hands-on simulation to make security real but approachable. In his words:
“Watching the cyber range demystify what participants thought to be hacker magic tricks never gets old! While it isn’t designed to turn players into hackers, it gets them attack-focused. Many have that a-ha moment when they realize that their own projects might have the same types of vulnerabilities they just enjoyed finding in our cyber range. This unique insight would have helped correct my own flawed assumptions much sooner”
Fun Fact: Kevin is a stand-up comedian in his spare time.