Video Description

This lesson teaches participants about the OWASP definition for the A1 Injection. Participants learn how an LDAP injection occurs and about different security weaknesses and injection flaws. In code, it is easy to discover injection flaws. This course section also discusses the different kind of injection attacks, not limited to but including the following: • Command/OS Injection • SQL Injection • XPath Injection • JSON Injection • LDAP Injection Participants also learn about an SQL Injection Code Sample, which helps to discover where a vulnerability exists. Finally, the instructor offers an example of CERT Secure Coding Standard using a Java example that is non-compliant.

Course Modules

Secure Coding