Students will learn about broken object level authorization, broken authentication, excessive data exposure, lack of resources and rate limiting, broken function level authorization, mass assignment, security misconfigurations, injection attacks, improper asset management, and insufficient logging and monitoring.
Target Audience
This course is targeted towards software engineers, but anyone can take the course.
Prerequisites
It is recommended that students have some software development experience and/or experience in at least one programming language, but coding skills are not required to complete this course.
Course Goals
By the end of this course, students should be able to:
- Understand the OWASP API Security Top 10
- Understand how to mitigate the OWASP Top 10
- Understand why API security is important
