OWASP Application Security Awareness Top 10 E-learning Project

Revision as of 04:47, 21 January 2013 by Erez Metula (Talk | contribs)

Jump to: navigation, search


The application security awareness e-learning course was designed with the intent to present programmers with the fundamental concepts in application security. The course educates programmers regarding the coding pitfalls that make applications vulnerable to attacks and what can be done to avoid the described pitfalls.

The course is based on the most recent OWASP Top 10 list, presenting the top web application vulnerabilities.

Live Demo

Course Methodology

The Methodology of the course is as follows, each of the OWASP top 10 vulnerabilities is divided into 5 different elements:

  • Definition- defining the vulnerability and its origin in the code.
  • Impact- presenting the potential impact of an exploitation of the vulnerability.
  • Example Scenario- presenting an example scenario of code manipulation and its malicious use.
  • Countermeasures- defining the countermeasures which must be implemented in the code in order to prevent vulnerability.
  • Demonstration Video Clips- depiction of the execution of an attack.

Awareness screenshot.png

Project About

This page has been recommended for deletion.
You can help OWASP by improving it or discussing it on its Talk page. See FixME
Comment: Tagged via Template:Delete

What does this OWASP project offer you?
What releases are available for this project?
what is this project?
Name: OWASP_Application_Security_Awareness_Top_10_E-learning_Project (home page)
Purpose: The Application Security E-Learning project has set itself the goal of delivering intuitive, concise and precise content in the fundementals of application secure coding.

Main target audience: programmers who wish to learn/ review application security fundamentals.

License: GNU Lesser General Public License
who is working on this project?
Project Leader(s):
  • Erez Metula @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Main links:
Key Contacts
  • Contact Erez Metula @ to contribute to this project
  • Contact Erez Metula @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
1.0 - January 2013 - (download)
last reviewed release
Not Yet Reviewed

other releases