VIRTUAL | July 27th-30th, 2020 | Jim Manico – GOTO Academy NL
VIRTUAL | July 27th-30th, 2020 | Jim Manico

GOTO Academy NL

VIRTUAL | July 27th-30th, 2020 | Jim Manico


€ 599.00

Do you have any questions?


 Building Secure APIs and Web Applications at a glance

As part of this course, we will explore the use of third-party security libraries and frameworks to speed and standardise secure development. We will highlight production quality and scalable controls from various languages and frameworks.


€599 excl. VAT


4 days, 14:00-18:00 CET 



Course delivered in English by Jim Manico

Interesting for:


Java, PHP, Python, Javascript and .NET programmers, but any software developer building web applications and webservices will benefit. 


Agenda: Day 1&2 | Focus on web application basics

  • Introduction to Application Security
  • Introduction to Security Goals and Threats
  • HTTP Security Basics
  • CORS and HTML5 Considerations
  • XSS Defense 
  • Content Security Policy
  • Introduction to Angular.JS Security
  • Introduction to React.JS Security
  • SQL and other Injection
  • Cross Site Request Forgery
  • File Upload and File IO Security
  • Deserialization Security
  • Input Validation Basics
  • OWASP Top Ten 2017


Agenda: Day 3&4 | Focus on API secure coding, identity & other advanced topics

  • We will have three different lab environments for students to choose from
  • OAuth to Security
  • HTTPS/TLS Best Practices
  • Third-party Library Security Managment
  • Application Layer Intrusion Detection

About the trainer Jim Manico:

Jim Manico is the founder of Manicode Security where he trains software developers on secure coding and security engineering. He is also an investor/advisor for KSOc, Nucleus Security, Signal Sciences and BitDiscovery. Jim is a frequent speaker on secure software practices, is a member of the Java Champion Community, and is the author of "Iron-Clad Java: Building Secure Web Applications" from Oracle Press. Jim also volunteers for the OWASP foundation as the project co-lead for the OWASP ASVS and the OSWSP Proactive Controls. 

                                                                                                                                                                                                         You can find Jim on Twitter.


Would you like to join as a group? 

Contact us