Free

OWASP Top 10 - 2021

The OWASP Top 10 features the most critical web application security vulnerabilities. Build your offensive security and penetration testing skills with this one-of-a-kind course!
1
2
M
Time
intermediate
difficulty
1
ceu/cpe

Course Content

Course Description

Our OWASP course reflects the categories included in the September 2021 version of the OWASP Top 10 list.

Who should take this course?

Our OWASP Top 10 course is designed for an intermediate-level student, someone who is a seasoned offensive security professional, SOC analyst, or Windows system administrator who wants to know how to exploit and protect against the latest vulnerabilities impacting enterprise systems.

What are the prerequisites for this course?

You will gain the most benefit from this course if you have a basic understanding of: web applications, programming languages, web browsers, and web application hacking.

Why should I take this course?

The Open Web Application Security Project (OWASP) is a non-profit organization focused on web security. The OWASP Top 10 features the most critical web application security vulnerabilities. Our course gives you the knowledge needed to identify, exploit, and offer remediation suggestions for these vulnerabilities.

What makes this course different from other courses on similar topics?

We have released a series of 10 separate courses that each cover one category on the top 10 list. In all 10 of these courses, you will see both this introductory module and at least 1 additional module covering material on a particular top 10 list category. You can earn 1-3 hours of training in each course. Gain the knowledge, training, and CEUs you need at your own preferred pace!

This course was developed by Clint Kehr, who is a senior technical manager for a financial services company’s Responsible Disclosure Team, where he interacts with ethical hackers who find vulnerabilities in the company’s infrastructure. Clint is a former Special Agent with the Department of Justice where he specialized in internet investigations and conducted numerous cases on cyber threat actors on the surface, deep, and dark web, resulting in Clint earning the Attorney General’s Distinguished Service Award. Clint has trained over 1,000 law enforcement officers, prosecutors, and civilians on the dark web and dark market websites. Clint has a master’s degree in intelligence studies from American Military University where he graduated with honors and also has a master’s degree in Information Technology from Carnegie Mellon University where he graduated with highest distinction. As a former Navy Reserve Officer, Clint served in many roles, such as a division officer and department head for commands in the information warfare community.

Why should I take this course on Cybrary and not somewhere else?

We have customized our OWASP training courses to appeal to all different learning styles with a hands-on approach. Our challenge-focused training is designed to give you the skills you need to advance in a career involving penetration testing, security engineering, web application development, and more.

This course was developed by Clint Kehr, who is a technical manager for a financial services company’s Responsible Disclosure Team, where he interacts with ethical hackers who find vulnerabilities in the company’s infrastructure. Clint is a former Special Agent with the Department of Justice where he specialized in internet investigations and conducted numerous cases on cyber threat actors on the surface, deep, and dark web, resulting in Clint earning the Attorney General’s Distinguished Service Award. Clint has trained over 1,000 law enforcement officers, prosecutors, and civilians on the dark web and dark market websites. Clint has a master’s degree in intelligence studies from American Military University where he graduated with honors and also has a master’s degree in Information Technology from Carnegie Mellon University where he graduated with highest distinction. As a former Navy Reserve Officer, Clint served in many roles, such as a division officer and department head for commands in the information warfare community.

Each Cybrary OWASP Top 10 (2021) course includes:

  • Engaging video overview lessons capturing the significance of each category and the CWEs mapped to them, as well as describe how the category in the 2021 list is distinctive from how the category was presented in the 2017 list.
  • Guided video demonstrations that let you follow your instructor, Clint Kehr - an experienced penetration tester and technical manager - as he works with tools and vulnerable web applications such as OWASP Mutillidae.
  • Written scenario-based lessons that highlight the relevance of the OWASP Top 10 web application vulnerabilities in real-world ransomware attacks and data breaches, including the 2021 Colonial Pipeline Hack and the 2017 Equifax Breach.
  • Hands-on labs that allow you to identify, exploit, and mitigate these critical vulnerabilities in a secure environment, as well as offer remediation advice to clients. These labs are challenging and encourage you to think like a penetration tester!
  • Challenge questions that help you test what you’ve learned in written lessons and lab activities.

    This course is part of a Career Path:
    Become a SOC Analyst - Level 3
    This Career Path is for a Security Operations Center Analyst (SOC Analyst). This particular Career Path covers a more advanced-level SOC role. As a SOC Analyst, your primary duty is to ensure that the organization’s digital assets are secure and protected from unauthorized access. That means that you are responsible for protecting both online and on-premise infrastructures, monitoring data to identify suspicious activity, and identifying and mitigating risks before there is a breach. In the event that a breach does occur, a SOC analyst will be on the front line, working to counter the attack.
    Become a SOC Analyst - Level 1
    A Security Operations Center Analyst (SOC Analyst) stands as a front line of defense against the ever present cyber threats faced by organizations today. A SOC team ensures an organization’s digital assets remain secure and protected from unauthorized access by monitoring and responding to massive amounts of data in record time. In this role, you will protect your organization’s infrastructure by monitoring data to identify suspicious activity, then mitigating risks before a breach occurs. Cybrary's Become a SOC Analyst - Level 1 career path will equip you to break into the field with skills aligned to the US National Institute of Standards and Technology's Cyber Defense Analyst NICE work role.

    Instructed by

    Senior Instructor
    Clint Kehr

    Clint is a technical manager for a financial services company’s Responsible Disclosure Team, where he interacts with ethical hackers who find vulnerabilities in the company’s infrastructure. Clint is a former Special Agent with the Department of Justice where he specialized in internet investigations and conducted numerous cases on cyber threat actors on the surface, deep, and dark web, resulting in Clint earning the Attorney General’s Distinguished Service Award. Clint has trained over 1,000 law enforcement officers, prosecutors, and civilians on the dark web and dark market websites. Clint has a master’s degree in intelligence studies from American Military University where he graduated with honors and also has a master’s degree in Information Technology from Carnegie Mellon University where he graduated with highest distinction. As a former Navy Reserve Officer, Clint served in many roles, such as a division officer and department head for commands in the information warfare community.

    Provider
    Cybrary Logo
    Certification Body
    Certificate of Completion

    Complete this entire course to earn a OWASP Top 10 - 2021 Certificate of Completion