There's no substitute for experience

AppSecEngineer's hands-on labs don't just let you practice, they make you perfect.
book a demo

A hands-on lab is worth a thousand lessons

All our courses are based on real-world security scenarios
that you're likely to encounter.

Armchair hypotheticals don't exist in our playbook.

try our labs for free

Over 1000 Labs.
Don't just change the game, beat it!

Practice while you learn

Every course comes with hours of video
and multiple hands-on lab exercises

Constantly growing library

We're adding new courses, new hands-on labs, and new content every month

No downloads, no installs

Everything on ASE is 100% browser-based,
hosted on an ultra-light platform

Never found a crypto class this informative. Great job, Abhay!

Sukanya S
senior security engineer
World's Largest Sports Equipment Manufacturer

Abhay is a phenomenal instructor, he is extremely knowledgeable and engaging. The labs were really fun and relevant... I learned a ton and look forward to putting it into practice.

Christian San Roman
Senior Security Executive
Defense industry

Thanks AppSecEngineer for amazing courses, information

Moises T.
DevSecOps, Purple Teaming
softtek

Thorough threat modeling process that can be applied to internal and external networks.... Training was a 10x multiplier for us, allowing our team to easily build models the SOC can use.

Jessica O.
Cyber Threat Intelligence & Threat Hunt Development Lead
CYBERSECURITY OPERATIONS CENTER (CSOC)

You need to experience it to believe it

When you train with AppSecEngineer, you get it all:
Knowledge, Skills and Experience.
The complete package, all for one affordable price.

K8s + Vault CSI
Kubernetes Security
Intermediate
55
Minutes
EsLint-Commit Hook latest
DevSecOps
Intermediate
30
Minutes
IAM Conditional Policy
AWS Security
Advanced
30
Minutes
Azure K8S Attack
Azure Security
Intermediate
60
Minutes
Cosign
DevSecOps
Intermediate
40
Minutes
ImageTragick Supply chain
Container Security
Beginner
40
Minutes
AWS Famous Tower
AWS Security
Beginner
30
Minutes
NetworkPolicy
Kubernetes Security
Intermediate
60
Minutes
capabilties-workshop
Container Security
Beginner
30
Minutes
Jenkins Harbor
Container Security
Intermediate
40
Minutes
Scorecard
DevSecOps
Intermediate
35
Minutes
CloudTrail S3 Resiliency
AWS Security
Beginner
30
Minutes
XXE Attack and Defense
Application Security
Beginner
40
Minutes
Semgrep for SAST
DevSecOps
Intermediate
35
Minutes
ECR Immutable Image Tag
Container Security
Intermediate
45
Minutes
Casbin RBAC - Java
Advanced Application Security
Intermediate
60
Minutes
Service Prinicipals
Azure Security
Beginner
30
Minutes
Content Trust
Azure Security
Beginner
60
Minutes
ECR Scan
AWS Security
Intermediate
30
Minutes
Falco Container Monitoring Basic
Container Security
Advanced
50
Minutes
SSRF - Java
Advanced Application Security
Intermediate
60
Minutes
ECR IAM Tag Identity
AWS Security
Intermediate
30
Minutes
Harbor Cosign
Container Security
Intermediate
30
Minutes
Jenkins - Java Pipeline
DevSecOps
Intermediate
35
Minutes
Input Validation - Request Filter
Application Security
Beginner
60
Minutes
OWASP Amass
Application Security
Beginner
35
Minutes
Nuclei - DAST (ZAP)
DevSecOps
Beginner
30
Minutes
GoBuster
Application Security
Beginner
50
Minutes
Inspector Alarm - Classic
AWS Security
Beginner
45
Minutes
Java Common Behemoth
Application Security
Beginner
30
Minutes
JKU Bypass
Advanced Application Security
Advanced
30
Minutes
Kubernetes Admission Controller Compromise
Advanced Application Security
Intermediate
65
Minutes
Angular Trusted Types
Advanced Application Security
Intermediate
45
Minutes
Create NotResource Policy
AWS Security
Beginner
30
Minutes
Multi Region CloudTrail
AWS Security
Beginner
30
Minutes
Serverless Security Logging
AWS Security
Intermediate
120
Minutes
Node Request Validator
AWS Security
Intermediate
60
Minutes
IDOR Mass Assignment - NodeJS
Advanced Application Security
Intermediate
60
Minutes
Osqeury Container Monitoring
Container Security
Advanced
30
Minutes
One-way hashing vs Key-Stretching
Advanced Application Security
Advanced
45
Minutes
Non-root Containers
Container Security
Intermediate
25
Minutes
Tour-of-ThreatPlaybook
Threat Modeling
Intermediate
60
Minutes
Sysbox Runtime
Container Security
Advanced
50
Minutes
docker-101-workshop
Container Security
Intermediate
30
Minutes
AWS API Gateway Alert
AWS Security
Intermediate
300
Minutes
Authorization Code Flow with Front-end
Advanced Application Security
Intermediate
90
Minutes
SSM Parameter Change Monitor
AWS Security
Beginner
30
Minutes
Custom SAST - Bandit Python
DevSecOps
Intermediate
25
Minutes
Ruby SQL Injection
Advanced Application Security
Intermediate
45
Minutes
General Policy
AWS Security
Beginner
40
Minutes
JWT Mutable Claims
AWS Security
Intermediate
30
Minutes
Access Control List with Casbin
Application Security
Intermediate
45
Minutes
Git SAST template
DevSecOps
Intermediate
40
Minutes
K8s + Vault Dynamic Secrets
Kubernetes Security
Intermediate
90
Minutes
ServiceAccount and Helm2
Kubernetes Security
Intermediate
45
Minutes
Process Namespace Boundary
Kubernetes Security
Intermediate
30
Minutes
Kubernetes Steal Secret
Kubernetes Security
Intermediate
60
Minutes
CloudTrail Log File Validation
AWS Security
Beginner
90
Minutes
DevSecOps with Git
DevSecOps
Intermediate
60
Minutes
Malicious Git Hooks
Advanced Application Security
Intermediate
25
Minutes
Vault CLI Walkthrough
Kubernetes Security
Advanced
70
Minutes
Azure Storage Shared Key Authorization
Azure Security
Intermediate
60
Minutes
K8s Vulnerable etcd
Kubernetes Security
Intermediate
45
Minutes
Basic Events
AWS Security
Intermediate
300
Minutes
Guided Vault Tour
Advanced Application Security
Advanced
60
Minutes
EKS OIDC Cognito
AWS Security
Advanced
90
Minutes
Vault
Application Security
Beginner
45
Minutes
Vul-Flask XXE
Application Security
Beginner
60
Minutes
K8s Role Based Access Control(RBAC)
Kubernetes Security
Advanced
60
Minutes
Role-Based Access Control
Kubernetes Security
Intermediate
60
Minutes
cosign-workshop
Container Security
Beginner
30
Minutes
EC2 Defense
AWS Security
Beginner
60
Minutes
Kubernetes-tense-gambit
Kubernetes Security
Beginner
60
Minutes
Custom-Regression
Threat Modeling
Intermediate
60
Minutes
Github Actions with SCA latest
DevSecOps
Intermediate
60
Minutes
Python Toxic Passenger
Application Security
Intermediate
30
Minutes
Attack and Defense - Insecure Deserialization
Advanced Application Security
Intermediate
30
Minutes
JWT Algo Confusion - Python
Advanced Application Security
Intermediate
60
Minutes
Web Application Firewall - Advanced
Advanced Application Security
Intermediate
20
Minutes
Kubernetes Introduction
Kubernetes Security
Beginner
90
Minutes
ArgoCD
Kubernetes Security
Advanced
40
Minutes
Tavern REST API Testing - Latest
DevSecOps
Intermediate
60
Minutes
OWASP ZAP API Deep-Dive
DevSecOps
Advanced
45
Minutes
Abuse git runner
DevSecOps
Intermediate
35
Minutes
Create Group
AWS Security
Beginner
30
Minutes
AWS PMapper
AWS Security
Advanced
35
Minutes
Kranthi
DevSecOps
Intermediate
60
Minutes
Lambda Privilege Escalation Defence
AWS Security
Advanced
90
Minutes
Security Hub Prowler CloudTrail Athena
Application Security
Beginner
60
Minutes
Primary Key IDOR - Python
Advanced Application Security
Intermediate
30
Minutes
Angular XSS
Advanced Application Security
Intermediate
45
Minutes
Ruby Mass Assignment
Advanced Application Security
Intermediate
45
Minutes
Lambda Privilege Escalation Detect
AWS Security
Advanced
90
Minutes
AES - AEAD
Advanced Application Security
Advanced
45
Minutes
Ruby Template Injection
Advanced Application Security
Intermediate
45
Minutes
Ruby Session Fixation
Advanced Application Security
Intermediate
45
Minutes
Python Gleaming Diamond
Application Security
Beginner
30
Minutes
ZAP + Cypress
DevSecOps
Intermediate
35
Minutes
Analyzing Docker Layers
Container Security
Intermediate
20
Minutes
audit-workshop
Container Security
Beginner
30
Minutes
Integrating Vault with an App
Advanced Application Security
Advanced
45
Minutes
Cosign-blob
DevSecOps
Intermediate
40
Minutes
Kyverno - Vault + Cosign
Kubernetes Security
Advanced
70
Minutes
AWS Infamous Author
AWS Security
Beginner
30
Minutes
EKS Cluster Audit
AWS Security
Advanced
90
Minutes
Python SCA with Jenkins
DevSecOps
Beginner
30
Minutes
Nuclei - Injections Vulnerabilities
DevSecOps
Beginner
30
Minutes
Custom SAST with Bandit
DevSecOps
Intermediate
25
Minutes
AWS Silver Lyric
AWS Security
Beginner
30
Minutes
Audit2RBAC
Kubernetes Security
Intermediate
60
Minutes
Integrating Vault with our Web App
Advanced Application Security
Intermediate
30
Minutes
Github Template Injection
Advanced Application Security
Intermediate
20
Minutes
IAM-Permission-Boundary
AWS Security
Beginner
30
Minutes
GoLang CSRF
Advanced Application Security
Intermediate
35
Minutes
Bruteforcing HS256 JWTs
Advanced Application Security
Advanced
30
Minutes
Failing SAST Scan Builds
DevSecOps
Beginner
30
Minutes
Container + Falco
Container Security
Intermediate
45
Minutes
Kyverno - Policy Reporter
Kubernetes Security
Advanced
60
Minutes
kubernetes-wavy-patriot
Kubernetes Security
Intermediate
60
Minutes
Kuberentes-polar-lotus
Kubernetes Security
Intermediate
60
Minutes
Non-AWS IP Address Credential Compromise
AWS Security
Beginner
45
Minutes
user-workshop
Container Security
Beginner
30
Minutes
Session Fixation Flaws and Defense
Application Security
Intermediate
30
Minutes
Basics - Serverless API
Advanced Application Security
Intermediate
30
Minutes
AWS KMS data key
AWS Security
Advanced
30
Minutes
ECR CloudTrail Athena
Container Security
Intermediate
45
Minutes
Process Namespace Boundry
Kubernetes Security
Advanced
30
Minutes
Node JSON Schema
AWS Security
Intermediate
60
Minutes
S3 Bucket Policy
AWS Security
Beginner
30
Minutes
PyRaider
DevSecOps
Intermediate
60
Minutes
EC2 state change
AWS Security
Beginner
30
Minutes
Signatures with Asymmetric Encryption Algorithms
Application Security
Intermediate
30
Minutes
NodeJs SCA with Jenkins
DevSecOps
Beginner
30
Minutes
WAF Custom Rules
Advanced Application Security
Intermediate
40
Minutes
Kubernetes with Vault Compromise
Advanced Application Security
Intermediate
50
Minutes
SLS API Gateway Request Validation
AWS Security
Intermediate
30
Minutes
ImageMagick
Application Security
Beginner
60
Minutes
Automation-with-ThreatPlaybook
Threat Modeling
Intermediate
60
Minutes
AWS-S3-Pre-signed-URL
AWS Security
Beginner
30
Minutes
JSONSchema
Advanced Application Security
Advanced
45
Minutes
RoboZap
DevSecOps
Intermediate
35
Minutes
Github Poisoned Pipeline Execution
DevSecOps
Intermediate
30
Minutes
kubernetes-crazy-trader
Kubernetes Security
Intermediate
60
Minutes
User Management
Azure Security
Intermediate
60
Minutes
Nuclei - Insecure Direct Object Reference
DevSecOps
Beginner
30
Minutes
Conditional Policy Definition
AWS Security
Beginner
40
Minutes
Directory Bruteforcing
Application Security
Beginner
20
Minutes
Guage and Zap Latest
DevSecOps
Intermediate
40
Minutes
One-Way Hashing vs Key Stretching
Application Security
Intermediate
30
Minutes
KubeHunter
Kubernetes Security
Intermediate
60
Minutes
Selenium with OWASP ZAP
DevSecOps
Advanced
45
Minutes
ECB Penguin
Advanced Application Security
Advanced
30
Minutes
SteamPipe Mods
AWS Security
Intermediate
45
Minutes
DynamoDB Privilege Escalation
AWS Security
Intermediate
300
Minutes
Basic API
AWS Security
Intermediate
300
Minutes
Git Commit Hooks with ESLint
DevSecOps
Intermediate
30
Minutes
Kyverno - Basics
Kubernetes Security
Advanced
60
Minutes
Python Mild Packer
Application Security
Beginner
30
Minutes
Java SCA with Jenkins
DevSecOps
Beginner
40
Minutes
Create User
AWS Security
Beginner
30
Minutes
kubernetes-confused-enigma
Kubernetes Security
Beginner
60
Minutes
kubernetes-miracle-crown
Kubernetes Security
Beginner
60
Minutes
ReDOS - NodeJS
Advanced Application Security
Intermediate
60
Minutes
JWT JKU Authorization Bypass
Application Security
Beginner
50
Minutes
EFK + Custom Falco Rules
DevSecOps
Intermediate
55
Minutes
KubeSec
Kubernetes Security
Intermediate
10
Minutes
OPA, Traefik and Decentralized security Controls
Application Security
Beginner
50
Minutes
Nmap
Application Security
Beginner
45
Minutes
Java SAST with Jenkins
DevSecOps
Beginner
30
Minutes
PK based IDOR
Advanced Application Security
Advanced
60
Minutes
Insecure Mode of Encryption
Application Security
Intermediate
30
Minutes
Lambda Privilege Escalation Attack
AWS Security
Advanced
90
Minutes
kubernetes-urban-halo
Kubernetes Security
Beginner
60
Minutes
Java Dazzling Wrangler
Application Security
Beginner
30
Minutes
OWASP ZAP - Baseline Scan
DevSecOps
Intermediate
30
Minutes
Angular XSS Contexts
Advanced Application Security
Intermediate
45
Minutes
Bruteforcing JWT HMAC Keys
AWS Security
Intermediate
30
Minutes
Excessive Data Exposure
Advanced Application Security
Intermediate
30
Minutes
Kyverno - Cosign
Kubernetes Security
Advanced
60
Minutes
Dockerbench
Container Security
Intermediate
30
Minutes
Role Based Access Control + KubiScan
Kubernetes Security
Intermediate
60
Minutes
Github Information-disclosure
Advanced Application Security
Intermediate
30
Minutes
K3s Vault
Kubernetes Security
Advanced
60
Minutes
DNS Spoofing
Kubernetes Security
Intermediate
60
Minutes
Public Registry
Container Security
Intermediate
20
Minutes
Weasyprint SSRF - Python
Application Security
Beginner
60
Minutes
Azure Container Registry Attack
Azure Security
Intermediate
60
Minutes
Container Static Analysis with Jenkins
DevSecOps
Beginner
30
Minutes
Github AWS Step Function PR Scanner
AWS Security
Beginner
30
Minutes
Authorization Code Flow With PKCE - Confidential
Advanced Application Security
Intermediate
60
Minutes
NodeJsScan
DevSecOps
Intermediate
25
Minutes
:Errant EC2 Deployment - Detect
AWS Security
Advanced
120
Minutes
Talisman
DevSecOps
Intermediate
35
Minutes
TfSec
AWS Security
Beginner
30
Minutes
Kubernetes Liveness Probes Attack
Advanced Application Security
Intermediate
50
Minutes
DevSecOps Argo
Kubernetes Security
Advanced
40
Minutes
JWT AlgoConfution
AWS Security
Intermediate
60
Minutes
Kube-bench
Kubernetes Security
Advanced
30
Minutes
AWS KMS Tour
AWS Security
Intermediate
30
Minutes
Insecure Password Storage - Python
Advanced Application Security
Intermediate
60
Minutes
Vault CSI
Kubernetes Security
Intermediate
45
Minutes
Kyverno Latest
DevSecOps
Intermediate
60
Minutes
Nuclei - Security Misconfiguration Sensitive Info
DevSecOps
Beginner
120
Minutes
Cilium Network Security
DevSecOps
Intermediate
60
Minutes
ECR Cloudwatch Alarm
AWS Security
Intermediate
30
Minutes
Go SSRF Attack and Defense
Application Security
Beginner
30
Minutes
Angular DomPurify
Advanced Application Security
Intermediate
45
Minutes
Security Hub Incident Response Playbooks
Application Security
Beginner
60
Minutes
KubeSec-old-1
Kubernetes Security
Intermediate
60
Minutes
AWS CIS Benchmark
AWS Security
Beginner
30
Minutes
ECR Public
AWS Security
Intermediate
30
Minutes
LambdaGuard
AWS Security
Intermediate
45
Minutes
ZAP Spider Scan
DevSecOps
Intermediate
30
Minutes
KubiScan
Kubernetes Security
Intermediate
60
Minutes
Compute Attack & Defense
Azure Security
Intermediate
180
Minutes
Gvisor Runtime
Container Security
Advanced
50
Minutes
Angular Security Headers
Advanced Application Security
Intermediate
30
Minutes
SteamPipe
AWS Security
Intermediate
45
Minutes
Authenticated Encryption with AES GCM
Application Security
Intermediate
30
Minutes
ImageTragick
Advanced Application Security
Intermediate
25
Minutes
Verb Tampering
Application Security
Beginner
50
Minutes
Insecure Deserialization - Java
AWS Security
Intermediate
60
Minutes
Pug Template Injection
Advanced Application Security
Advanced
50
Minutes
ArgoCD GitHub Actions
Kubernetes Security
Intermediate
90
Minutes
Azure Storage Azure AD Authorization
Azure Security
Intermediate
60
Minutes
IaC Security - Checkov
DevSecOps
Intermediate
35
Minutes
OAuth account hijacking via Open redirect
Advanced Application Security
Intermediate
60
Minutes
Attacking Helm2
Kubernetes Security
Intermediate
60
Minutes
Role Based Access Control
Kubernetes Security
Beginner
30
Minutes
Anchore
Container Security
Intermediate
40
Minutes
WAF 101
Advanced Application Security
Intermediate
25
Minutes
NodeJs SAST with Jenkins
DevSecOps
Beginner
30
Minutes
Algorithm Confusion
Advanced Application Security
Advanced
45
Minutes
Reflected XSS - Java
Advanced Application Security
Intermediate
60
Minutes
VPC Flow Logs
AWS Security
Beginner
60
Minutes
JKU Auth
AWS Security
Intermediate
90
Minutes
Insecure S3
AWS Security
Beginner
30
Minutes
Insecure Direct Object Reference - Mass Assignment Variant
Application Security
Intermediate
30
Minutes
Security Logging
Advanced Application Security
Intermediate
90
Minutes
EFK+Falco-Latest
Kubernetes Security
Advanced
70
Minutes
ReDOS
Application Security
Beginner
50
Minutes
Nuclei - Client Side Reflected XSS
DevSecOps
Beginner
30
Minutes
Clair
Container Security
Intermediate
40
Minutes
Node Robot Pipeline
DevSecOps
Intermediate
35
Minutes
Node ReDos
AWS Security
Intermediate
45
Minutes
Azure Setup
Azure Security
Beginner
40
Minutes
Event Injection with XXE
AWS Security
Intermediate
30
Minutes
WAF + ELK
Advanced Application Security
Intermediate
40
Minutes
AWS Grizzled Bat
AWS Security
Beginner
30
Minutes
SecComp
Container Security
Intermediate
30
Minutes
Resource Management
Container Security
Intermediate
30
Minutes
Node Image Tragick
AWS Security
Intermediate
25
Minutes
ECR Lifecycle
AWS Security
Intermediate
30
Minutes
Kubeseal - Sealed Secrets
Kubernetes Security
Intermediate
45
Minutes
API-CW-4XX Metric and Alarm
AWS Security
Beginner
30
Minutes
Distroless Containers
Container Security
Intermediate
30
Minutes
Tavern REST API Testing
DevSecOps
Intermediate
25
Minutes
Log4Shell - Java
Advanced Application Security
Intermediate
60
Minutes
Step Functions
DevSecOps
Intermediate
55
Minutes
Git Commit Hooks with Bandit
DevSecOps
Intermediate
30
Minutes
Stored XSS - Java
Advanced Application Security
Intermediate
60
Minutes
AWS KMS with Function
AWS Security
Intermediate
300
Minutes
Excessive Data Exposure - NodeJS
Advanced Application Security
Intermediate
60
Minutes
Kubernetes Trojanized Container + Cluster
DevSecOps
Intermediate
120
Minutes
EKS Cluster Compromise
AWS Security
Advanced
90
Minutes
AWS S3 Versioning
AWS Security
Beginner
30
Minutes
Template Injection - NodeJS
Advanced Application Security
Intermediate
60
Minutes
Permission Boundary
AWS Security
Beginner
40
Minutes
:Errant EC2 Deployment - Defense
AWS Security
Advanced
90
Minutes
Session Fixation - Java
Advanced Application Security
Intermediate
60
Minutes
AWS SecurityHub ASFF
AWS Security
Beginner
45
Minutes
Harbor Image Scanning
Container Security
Intermediate
30
Minutes
Commit-Hook: ESLint
DevSecOps
Intermediate
60
Minutes
GoLang SQL Injection
Advanced Application Security
Intermediate
35
Minutes
Implementing AWS Secrets and Encryption with a real-world app
AWS Security
Beginner
30
Minutes
Role Based Access Control Latest
DevSecOps
Intermediate
65
Minutes
EFK + Falco
Kubernetes Security
Intermediate
60
Minutes
Ruby-CORS
Advanced Application Security
Intermediate
45
Minutes
DOMPurify
Advanced Application Security
Advanced
45
Minutes
SSRF - Weasyprint
Advanced Application Security
Advanced
60
Minutes
NPM Audit
Advanced Application Security
Advanced
25
Minutes
ACL - Casbin - OPA
DevSecOps
Intermediate
45
Minutes
IAM Access Analyzer
AWS Security
Beginner
30
Minutes
ZAP-Mini-Workshop
Application Security
Beginner
40
Minutes
Github Auto-Merger
Advanced Application Security
Intermediate
30
Minutes
ZAP Plugin Scan
DevSecOps
Intermediate
30
Minutes
harbor-101
Container Security
Intermediate
30
Minutes
SQL Injection
Advanced Application Security
Advanced
30
Minutes
SNS Event Injection
AWS Security
Intermediate
45
Minutes
XXE - NodeJS
Advanced Application Security
Intermediate
30
Minutes
JWT Algo Confusion
Application Security
Beginner
50
Minutes
Abusing API Webhooks with HTTP 303 Redirects
Advanced Application Security
Intermediate
90
Minutes
Bandit Custom Plugin
DevSecOps
Intermediate
60
Minutes
Trivy
DevSecOps
Intermediate
30
Minutes
AWS Nervous Darling
AWS Security
Beginner
30
Minutes
image-workshop
Container Security
Beginner
30
Minutes
K8s + Vault CSI Latest
DevSecOps
Intermediate
60
Minutes
ECR KMS
AWS Security
Intermediate
30
Minutes
Docker-Bench
Container Security
Intermediate
30
Minutes
Jenkins - Node Pipeline
DevSecOps
Intermediate
35
Minutes
DevSecOps with GitHub Actions
DevSecOps
Intermediate
45
Minutes
SSRF Urllib - Python
Application Security
Beginner
30
Minutes
Gauge and ZAP
DevSecOps
Intermediate
35
Minutes
Stealing Secrets on Kubernetes
Kubernetes Security
Intermediate
40
Minutes
AWS Security Cloudwatch Monitoring
AWS Security
Intermediate
300
Minutes
Abusing Git Runners
Container Security
Intermediate
40
Minutes
Leveraging Extensive Capabilities to Breakout of a Container
Container Security
Intermediate
30
Minutes
Storage Account
Azure Security
Beginner
60
Minutes
Nano VMs
Container Security
Advanced
60
Minutes
kubernetes-blissful-sherpa
Kubernetes Security
Beginner
60
Minutes
Angular CSRF
Advanced Application Security
Intermediate
45
Minutes
Node-ReDoS
AWS Security
Intermediate
90
Minutes
Kong / Konga / Keycloak: securing API through OIDC
Advanced Application Security
Intermediate
90
Minutes
Security Hub - GuardDuty - Macie
Application Security
Beginner
60
Minutes
Vault Advanced
Kubernetes Security
Intermediate
60
Minutes
Mass Assignment - Python
Advanced Application Security
Intermediate
60
Minutes
Istio
Kubernetes Security
Intermediate
60
Minutes
SSH Failure Monitor
AWS Security
Beginner
45
Minutes
AWS Cognito Authorization
AWS Security
Intermediate
300
Minutes
-Harbor OIDC ACL
Container Security
Intermediate
40
Minutes
Template Injection
Advanced Application Security
Intermediate
35
Minutes
AWS Inspector
AWS Security
Beginner
60
Minutes
EFK + SysDigFalco
Kubernetes Security
Intermediate
40
Minutes
Casbin with ACL
Application Security
Beginner
50
Minutes
SQL Injection - Python
Advanced Application Security
Intermediate
60
Minutes
Authorization Code Flow With PKCE
Advanced Application Security
Intermediate
60
Minutes
DynamoDB Injection
AWS Security
Intermediate
30
Minutes
SLS XXE Docx
AWS Security
Beginner
45
Minutes
Compromise AWS ECR Registry
Container Security
Intermediate
65
Minutes
GoLang XSS
Advanced Application Security
Intermediate
35
Minutes
apparmor-workshop
Container Security
Beginner
30
Minutes
AWS ScoutSuite
AWS Security
Advanced
35
Minutes
Request Filter Input Validation - NodeJS
Application Security
Beginner
50
Minutes
Logging and Monitoring
Kubernetes Security
Intermediate
60
Minutes
docker-image-workshop
Container Security
Beginner
30
Minutes
Terraform 101
Azure Security
Intermediate
30
Minutes
Selenium + OWASP ZAP
DevSecOps
Intermediate
60
Minutes
EKS SSRF
AWS Security
Advanced
120
Minutes
Protecting against SQL Injection
Application Security
Beginner
25
Minutes
Github Actions to generate build
DevSecOps
Intermediate
35
Minutes
S3 Versioning
AWS Security
Beginner
30
Minutes
AWS Alert Passenger
AWS Security
Beginner
30
Minutes
Docker Capabilities
Container Security
Intermediate
30
Minutes
Create General Policy
AWS Security
Beginner
30
Minutes
Syft and Grype
Container Security
Beginner
40
Minutes
AWS Flawless Bear
AWS Security
Beginner
30
Minutes
Semgrep 101
DevSecOps
Intermediate
45
Minutes
Angular SCA
Advanced Application Security
Intermediate
45
Minutes
SAST with Bandit
DevSecOps
Intermediate
25
Minutes
Jenkins Poisoned Pipeline Execution
DevSecOps
Intermediate
180
Minutes
Kyverno
Kubernetes Security
Intermediate
45
Minutes
EsLint-Commit Hook
DevSecOps
Intermediate
35
Minutes
Docker Hands-On
Container Security
Intermediate
30
Minutes
JWT Algorithm Confusion
AWS Security
Intermediate
40
Minutes
OPA with terraform
DevSecOps
Intermediate
55
Minutes
Keycloak 101
Advanced Application Security
Intermediate
60
Minutes
Compromise AWS ECR
Advanced Application Security
Intermediate
60
Minutes
ScoutSuite
AWS Security
Intermediate
45
Minutes
WAF - Anomaly Score
Advanced Application Security
Intermediate
40
Minutes
Virtual Network and Network Security Group
Azure Security
Beginner
60
Minutes
Semgrep - Grep + AST Static Analysis
DevSecOps
Intermediate
60
Minutes
Functions Attack & Defense
Azure Security
Intermediate
180
Minutes
EKS Supply Chain Attack
DevSecOps
Intermediate
60
Minutes
Azure Storage SAS Token Authorization
Azure Security
Intermediate
60
Minutes
Non-root Container
Container Security
Intermediate
30
Minutes
Input Validation - JSON Schema
Application Security
Beginner
30
Minutes
Errant EC2 Deployment - Attack
AWS Security
Advanced
100
Minutes
OWASP Dep-Track
DevSecOps
Intermediate
55
Minutes
IDOR - Mass Assignment
Advanced Application Security
Intermediate
60
Minutes
Kube-hunter
Kubernetes Security
Intermediate
30
Minutes
Insecure Deserialization - Python
AWS Security
Intermediate
30
Minutes
Create IAM Group
AWS Security
Beginner
30
Minutes
Vault - Dynamic Secrets
Kubernetes Security
Intermediate
60
Minutes
Client Credential Flow
Advanced Application Security
Intermediate
60
Minutes
AppArmor
Container Security
Intermediate
30
Minutes
Analysing Docker layers with ‘Dive’
Container Security
Intermediate
30
Minutes
Create Insecure Bucket
AWS Security
Beginner
30
Minutes
Implicit Flow
Advanced Application Security
Intermediate
60
Minutes
Jenkins Python Pipeline
DevSecOps
Intermediate
40
Minutes
Git Merge Request Pipeline
DevSecOps
Intermediate
35
Minutes
Authentication Bypass using CSRF
Advanced Application Security
Intermediate
60
Minutes
Create IAM Users
AWS Security
Beginner
30
Minutes
ACL Casbin - NodeJS
Advanced Application Security
Intermediate
60
Minutes
Harbor ACL
Container Security
Intermediate
30
Minutes
AWS Enchanted Guardian
AWS Security
Beginner
30
Minutes
kubernetes-infinite-ribbon
Kubernetes Security
Beginner
60
Minutes
EC2 Attack
AWS Security
Intermediate
30
Minutes
Service Principals
Azure Security
Intermediate
60
Minutes
GoLang Authentication
Advanced Application Security
Intermediate
35
Minutes
Cosign Github Actions
DevSecOps
Intermediate
40
Minutes
Container Breakout s
DevSecOps
Intermediate
60
Minutes
Cosign Keyless
Container Security
Beginner
60
Minutes
AWS Jealous Nurse
AWS Security
Beginner
30
Minutes
Group Management
Azure Security
Beginner
30
Minutes
kubernetes-antique-bagpipe
Kubernetes Security
Beginner
60
Minutes
REST API Testing with Robot Framework latest
DevSecOps
Intermediate
40
Minutes
Nuclei - Server Side SSRF
DevSecOps
Beginner
30
Minutes
Docx XXE - Python
Application Security
Beginner
60
Minutes
AWS Steampipe Latest
DevSecOps
Intermediate
60
Minutes
Docker Compose
Container Security
Intermediate
30
Minutes
Istio Authorization
Kubernetes Security
Intermediate
60
Minutes
SQL Injection - Java
Advanced Application Security
Intermediate
60
Minutes
OWASP Dependency Check
DevSecOps
Intermediate
45
Minutes
EFK + Sysdig Falco
Kubernetes Security
Intermediate
60
Minutes
OWASP ZAP - Parameterized Scan
DevSecOps
Intermediate
30
Minutes
ECR Cross Region Replica
AWS Security
Intermediate
30
Minutes
Terraform Modules
Advanced Application Security
Intermediate
25
Minutes
RBAC with Casbin
Application Security
Beginner
50
Minutes
AWS KMS Example
AWS Security
Intermediate
30
Minutes
EKS SA Compromise
AWS Security
Advanced
120
Minutes
Kubernetes Cluster Overview
DevSecOps
Intermediate
65
Minutes
JKU Authentication Bypass
AWS Security
Intermediate
40
Minutes
Kubernetes DNS Spoofing
Kubernetes Security
Intermediate
40
Minutes
Jenkins - DevSecOps Pipeline
DevSecOps
Intermediate
45
Minutes
Kyverno - Policy Management
Kubernetes Security
Advanced
60
Minutes
DockerSlim
DevSecOps
Intermediate
35
Minutes
VPC Flow Logs - CloudWatch
AWS Security
Beginner
30
Minutes
Stored XSS - NodeJS
Advanced Application Security
Intermediate
60
Minutes
NodeJS - Server-Side Template Injection
Application Security
Beginner
40
Minutes
Security Hub Prowler
Application Security
Beginner
60
Minutes
EKS Secret Mount
AWS Security
Advanced
90
Minutes
RSA Optimal Asymmetric Encryption Padding
Application Security
Intermediate
30
Minutes
Bandit-Commit Hook
DevSecOps
Intermediate
35
Minutes
Container SBOM with Syft
DevSecOps
Intermediate
45
Minutes
ZAP Custom Scripting
DevSecOps
Advanced
45
Minutes
KubiScan-latest
Kubernetes Security
Intermediate
60
Minutes
Pod Security Policy
Kubernetes Security
Intermediate
30
Minutes
GoLang Authorization
Advanced Application Security
Intermediate
35
Minutes
JSONSchema - JSON Validation
AWS Security
Intermediate
50
Minutes
Kyverno - Generating Resources
Kubernetes Security
Advanced
60
Minutes
Github with NodeJS Pipeline
DevSecOps
Intermediate
45
Minutes
DNS Spoofing Attack on Kubernetes
Kubernetes Security
Advanced
90
Minutes
CTF4
Threat Modeling
Intermediate
60
Minutes
Bandit - Commit Hook
DevSecOps
Intermediate
60
Minutes
Storage Authorization
Azure Security
Beginner
60
Minutes
Bastion Host
Azure Security
Beginner
60
Minutes
Request Filter Input Validation
Advanced Application Security
Advanced
45
Minutes
seccomp-workshop
Container Security
Beginner
30
Minutes
Stored XSS - Python
Advanced Application Security
Intermediate
60
Minutes
OPA 101
DevSecOps
Intermediate
60
Minutes
Pod Security Policy(securityContext)
Kubernetes Security
Intermediate
60
Minutes
XXE - Java
Application Security
Beginner
50
Minutes
OWASP Dependency Track
DevSecOps
Intermediate
45
Minutes
OPA Conftest
DevSecOps
Intermediate
40
Minutes
Create and Attach Role
AWS Security
Beginner
40
Minutes
Checkov
Kubernetes Security
Advanced
30
Minutes
Role Based Access Control
Kubernetes Security
Intermediate
60
Minutes
Prowler
AWS Security
Intermediate
45
Minutes
Container Breakout
Container Security
Intermediate
50
Minutes
XML External Entity (XXE)
Advanced Application Security
Advanced
60
Minutes
ZAP Mini Workshop
DevSecOps
Intermediate
45
Minutes
Kubernetes Privilege Escalation Attack
Kubernetes Security
Intermediate
60
Minutes
kubernetes-dual-hunter
Kubernetes Security
Beginner
80
Minutes
Trojanized Docker Images
Container Security
Intermediate
30
Minutes
AWS Defiant Trader
AWS Security
Beginner
30
Minutes
Ruby CSRF Vulnerability
Advanced Application Security
Intermediate
45
Minutes
SAST-SCA-Git-Dashboard
DevSecOps
Intermediate
40
Minutes
Authorization Code Flow - Confidential
Advanced Application Security
Intermediate
60
Minutes
Nuclei - Parser and Serialisation
DevSecOps
Beginner
30
Minutes
KeyVault
Kubernetes Security
Intermediate
60
Minutes
Bandit
DevSecOps
Intermediate
30
Minutes
Azure Network Security Group
Azure Security
Intermediate
60
Minutes
Insecure Deserialization
Application Security
Beginner
50
Minutes
KubeAudit
Kubernetes Security
Advanced
30
Minutes
Kubernetes Network Policy
Kubernetes Security
Advanced
45
Minutes
Harbor Immutable
Container Security
Intermediate
30
Minutes
Distroless
Container Security
Intermediate
40
Minutes
Angular SAST
Advanced Application Security
Intermediate
45
Minutes
K3s Vault Advanced
Kubernetes Security
Intermediate
60
Minutes
Falco Container Monitoring Advanced
Container Security
Advanced
60
Minutes
Authorization Code Flow
Advanced Application Security
Intermediate
60
Minutes
Git Includes Attack
Advanced Application Security
Intermediate
60
Minutes
Mass Assignment
Advanced Application Security
Advanced
60
Minutes
SLS Insecure Deserialization
AWS Security
Intermediate
30
Minutes
Python Dependency Confusion
Advanced Application Security
Intermediate
35
Minutes
Python SAST with Jenkins
DevSecOps
Beginner
30
Minutes
GoLang Session Fixation
Advanced Application Security
Intermediate
35
Minutes
Pre-Signed URLs
AWS Security
Beginner
30
Minutes
Pod Security Context
DevSecOps
Intermediate
60
Minutes
Lambda Malicious Layer Attack - Ransomware
AWS Security
Intermediate
45
Minutes
OsQuery Monitoring for Containers
Container Security
Intermediate
30
Minutes
OPA Gatekeeper
Kubernetes Security
Intermediate
60
Minutes
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

X

X