OWASP Top 10: #7 XSS and #8 Insecure Deserialization

Overview

Prepare for the seventh and eighth most common vulnerabilities on the 2021 OWASP Top 10 List: identity and authentication failures, and software and data integrity failures.

Syllabus

Introduction

OWASP Top 10
OWASP Top 10 series

1. Identification and Authentication Failures

What are identification and authentication failures?
Example 1: Pwned Passwords
Example 2: 2021 Verkada data breach
Prevention technique: Check for weak passwords
Prevention technique: Use multi-factor authentication
Prevention technique: Log and limit repeated login attempts

2. Software and Data Integrity Failures

What are software and data integrity failures?
Example 1: Solar Winds software supply chain attack
Example 2: 2021 Codecov bash uploader compromise
Prevention technique: Use digital signatures
Prevention technique: Ensure repositories are trustworthy
Prevention technique: Review code and configuration changes

Conclusion

OWASP Top 10 keep learning

Taught by

Caroline Wong

Reviews

4.7 rating at LinkedIn Learning based on 77 ratings

Start your review of OWASP Top 10: #7 XSS and #8 Insecure Deserialization

Taught by

OWASP Top 10 - A08:2021 - Software and Data Integrity Failures

OWASP Top 10 - 2021

OWASP Top 10: Software and Data Integrity Failures

OWASP Top 10 - A07:2021 - Identification and Authentication Failures

OWASP Top 10 Vulnerabilities Course (How To)

OWASP Top 10 - A04:2021 - Insecure Design

110+ Hours of Free LinkedIn Learning Courses with Free Certification

Never Stop Learning.