The Learning Lab experience is supported by both asynchronous and synchronous components. Each Learning Lab sequence includes a set of resources, an asynchronous discussion, and an interactive live session, all of which culminate in the development of a project or application to apply learning to local and specific contexts in support of the learning objectives.
Learning Lab Launch
October 4, 2021, 3:00–4:00 p.m. ET
This is a live session to learn the details of the Learning Lab, Canvas site, and expectations for the microcredential. There will also be time to get to know your fellow lab partners and facilitator(s).
Sequence 1: What is the OWASP TOP 10?
October 6, 2021, 3:00–4:15 p.m. ET
The goal of this sequence is to introduce the participants to the Open Web Applications Security Project. We will cover this document and its implications. We will also discuss how the project differs from a normal vulnerability scan and network level assessment.
Sequence 2: Proxying Web Traffic
October 13, 2021, 3:00–4:15 p.m. ET
In this sequence, participants will learn about web application proxies and how they are used to intercept web application traffic before it gets to the web server. We will also cover vulnerability scanning, credentialed and non credentialed testing.
Application and Closure
October 20, 2021, 3:00–4:15 p.m. ET
This learning lab will teach students how to deploy a vulnerable web application on Heroku. We will then cover how to “hack” into the web application. The application will be available for future use to participants.
Lab Application Project
Throughout the learning lab, learners will be introduced to the Open Web Application Security Projects Top 10 (OWASP Top 10) most critical security concerns for web applications. Learners will be able to test these security concerns using a web application that was purposefully built to be vulnerable to issues highlighted in the OWASP Top 10. Learners will be able to track their progress using a scoreboard and see how they progress through the different difficulty levels.