Courses coming soon

Attacking and Defending Persistent XSS with Java EE

Attacking and Defending Session Fixation with Java EE

Attacking and Defending XXE with Java EE

Implementing CSRF (Cross-Site Request Forgery) with Java EE

Attacking and Defending Insecure Deserialisation with Java EE

VueJS: Content Security Policy Playground

Security Logging for Application Security

Challenges coming soon

Formal Wasp

AWS Lost Ribbon

AWS Lazy Sandstorm

AWS Fatal Tsunami

AWS Double Wings

AWS Blue Sunburn

AWS Preying Volcano

AWS Impure Knight

AWS Miracle Master

AWS Thirsty Sun

AWS Late Alpha

AWS Canine Prince

AWS Angry Eclipse

AWS Alien Doctor

Winter Fly

Fastpass

Challenges coming soon

Formal Wasp

AWS Lost Ribbon

AWS Lazy Sandstorm

AWS Fatal Tsunami

AWS Double Wings

AWS Blue Sunburn

AWS Preying Volcano

AWS Impure Knight

AWS Miracle Master

AWS Thirsty Sun

AWS Late Alpha

AWS Canine Prince

AWS Angry Eclipse

AWS Alien Doctor

Winter Fly

Fastpass

Courses coming soon

Attacking and Defending Persistent XSS with Java EE

Attacking and Defending Session Fixation with Java EE

Attacking and Defending XXE with Java EE

Implementing CSRF (Cross-Site Request Forgery) with Java EE

Attacking and Defending Insecure Deserialisation with Java EE

VueJS: Content Security Policy Playground

Security Logging for Application Security

Cool New features on AppSecEngineer

GOOGLE CLOUD SANDBOXES

Google Cloud labs just got a whole lot better! If you're training a team of 5 or more on an AppSecEngineer Business Plus or Enterprise plan, you now have access to GCP sandboxes. Now you can avoid paying extra for your own cloud hosting. Enjoy the full library of hands-on GCP labs without needing to bring your own cloud accounts!

AZURE SANDBOXES

Train without limits in Azure security with our brand-new Azure Sandboxes! Big teams training in cloud security run into one big problem: expensive cloud hosting and maintenance costs. Make all that go away with Cloud Sandboxes. Exclusive to our Business Plus and Enterprise plans, teams of 5 or more will now be able to run their Azure security labs without needing to bring their own Azure account. Say goodbye to cloud fees for good! Cloud Sandboxes are currently available for our AWS and Azure security content.

Courses coming soon

Attacking and Defending Persistent XSS with Java EE

Attacking and Defending Session Fixation with Java EE

Attacking and Defending XXE with Java EE

Implementing CSRF (Cross-Site Request Forgery) with Java EE

Attacking and Defending Insecure Deserialisation with Java EE

VueJS: Content Security Policy Playground

Security Logging for Application Security

Challenges coming soon

Formal Wasp

AWS Lost Ribbon

AWS Lazy Sandstorm

AWS Fatal Tsunami

AWS Double Wings

AWS Blue Sunburn

AWS Preying Volcano

AWS Impure Knight

AWS Miracle Master

AWS Thirsty Sun

AWS Late Alpha

AWS Canine Prince

AWS Angry Eclipse

AWS Alien Doctor

Winter Fly

Fastpass

Challenges coming soon

Formal Wasp

AWS Lost Ribbon

AWS Lazy Sandstorm

AWS Fatal Tsunami

AWS Double Wings

AWS Blue Sunburn

AWS Preying Volcano

AWS Impure Knight

AWS Miracle Master

AWS Thirsty Sun

AWS Late Alpha

AWS Canine Prince

AWS Angry Eclipse

AWS Alien Doctor

Winter Fly

Fastpass

Courses coming soon

Attacking and Defending Persistent XSS with Java EE

Attacking and Defending Session Fixation with Java EE

Attacking and Defending XXE with Java EE

Implementing CSRF (Cross-Site Request Forgery) with Java EE

Attacking and Defending Insecure Deserialisation with Java EE

VueJS: Content Security Policy Playground

Security Logging for Application Security

Cool New features on AppSecEngineer

GOOGLE CLOUD SANDBOXES

AZURE SANDBOXES

Awesome New Resources coming soon

Hands-on. Defensive. Bleeding-Edge.