Lesson 1 | Welcome to Security Training for Engineers
Lesson 2 | SQL Injection
Lesson 3 | Storing Passwords
Lesson 4 | Encryption
Lesson 5 | Secret Management
Lesson 6 | Cross-Site Scripting (XSS)
Lesson 7 | Cross-Site Request Forgery (CSRF)
Lesson 8 | Account Enumeration
Lesson 9 | Session Management
Lesson 10 | Permissions
Lesson 11 | Buffer Overflows (and other classics)
In addition to the open source training PagerDuty provides for all employees, this training is an open source version of the technical security training PagerDuty provides to its own engineers. Again, this training was developed by Rich Adams of PagerDuty. It was modified and appended by Haekka to work in our format and to have questions for each lesson topic.
The primary medium of content is slides and videos. Haekka has added professional audio and adapted the transcripts to be of general use and not specific to PagerDuty,
This training is meant for engineers and not all employees. Many of the topics overlap with topics covered in the OWASP Top 10 but are presented in a different way and with more real world examples. This is a great security training for all types of engineers.