Skip to content

Web Application Security Fundamentals

What you'll learn

Dynamic web applications contain a huge amount of features but also many potential security flaws. This learning path teaches you about some common vulnerabilities within web applications, so you can be better able to detect and remedy them.

Last updated on: 20 August 2024

Modules

Start here

Introduction

Read the learning path overview, objectives, associated threats, and prerequisites

Module 2

Data Validation

We look at a very common class of vulnerabilities, in which a website parses maliciously crafted data submitted by a user

Module 3

Authentication

In any website that has user logins, it’s important that the site protects user accounts from unauthorized access. We outline the most common areas of authentication where web application flaws appear

Module 4

Authorization

Logged in users do not have access to all other users' data. Here we look at how to make sure no user exceeds their level of access or capability

Module 5

Application Logic

Here we learn about application logic vulnerabilities, what they are, and how to protect our website against them

Module 6

Interpersonal Skills for Web Application Security

When working on web application security (or any security!), it's important to check the nature of the digital protector relationship, provide useful advice, not fear-monger, and give solid risk assessments