Lesson 1 | Welcome to Security Training for Engineers

Lesson 2 | SQL Injection

Lesson 3 | Storing Passwords

Lesson 4 | Encryption

Lesson 5 | Secret Management

Lesson 6 | Cross-Site Scripting (XSS)

Lesson 7 | Cross-Site Request Forgery (CSRF)

Lesson 8 | Account Enumeration

Lesson 9 | Session Management

Lesson 10 | Permissions

Lesson 11 | Buffer Overflows (and other classics)

‍

In addition to the open source training PagerDuty provides for all employees, this training is an open source version of the technical security training PagerDuty provides to its own engineers. Again, this training was developed by Rich Adams of PagerDuty. It was modified and appended by Haekka to work in our format and to have questions for each lesson topic.

The primary medium of content is slides and videos. Haekka has added professional audio and adapted the transcripts to be of general use and not specific to PagerDuty,

This training is meant for engineers and not all employees. Many of the topics overlap with topics covered in the OWASP Top 10 but are presented in a different way and with more real world examples. This is a great security training for all types of engineers.