Security · Intermediate
Application Security Essentials
Practical security for developers building web apps. Includes hands-on exploitation labs in isolated environments and remediation exercises.
Features
- STRIDE threat modeling
- OWASP Top 10 walkthroughs
- Secure headers and CSP
- Dependency scanning workflows
- Secrets management basics
- Incident response playbooks
Outcomes
- Threat model document for capstone app
- Remediation PR with mentor approval
- Security checklist for future projects
Hae-won Jung
AppSec consultant; former penetration tester for Korean fintech.
FAQ
All labs run in provided sandboxes only—no external scanning.
Reviews
"CSP module was the first time I understood why our staging broke. Worth the evening sessions."