Veracode Security Labs Champion Level 3 Certificate

The bearer of this certificate earned 300 total points by completing secure coding labs through Veracode Security Labs. Labs are a form of secure code training that involves hands-on-keyboard exercises, where users demonstrate their abilities to exploit and patch code using real applications.
The following labs were completed toward certification:
Lab NameTopic NameLanguagePoints
Take Note! Secure C++ Programming: Heap Overflows C++30
Triple Word Score Secure C++ Programming: Stack Overflows C++10
Shifty RSA Secure C++ Programming: Bitwise Shifts C++10
Fix the Sessions OWASP 1: Broken Access Control Java10
Making Secure Decisions OWASP 4: Insecure Design NodeJS10
Bad Cookie ChallengeOWASP 1: Broken Access Control Python Flask10
Bugs in Debug OWASP 2: Cryptographic Failures Java10
Own the Database OWASP 3: Injection Java10
Parameterize all the things OWASP 3: Injection Java10
Bobby Tables ChallengeOWASP 3: Injection Java10
Can you see your reflection? OWASP 3: Injection Java10
Down with Uploads OWASP 3: Injection Java20
Alert ChallengeOWASP 3: Injection Java10
Persistence ChallengeOWASP 3: Injection Java10
Jot down this key OWASP 5: Security Misconfiguration Java10
Secret Admin ChallengeOWASP 5: Security Misconfiguration Java10
eXternal Entity (injection) OWASP 5: Security Misconfiguration Java10
XML is always a... ChallengeOWASP 5: Security Misconfiguration Python Flask10
Suspicious Packages OWASP 6: Vulnerable and Outdated Components Java10
Outdated Dependencies ChallengeOWASP 6: Vulnerable and Outdated Components Java10
Really, really bad passwords OWASP 7: Identification and Authentication Failures Java10
Hash it, store it, salt - upgrade it OWASP 7: Identification and Authentication Failures Java10
Terrible Password ChallengeOWASP 7: Identification and Authentication Failures Java10
In a Pickle OWASP 8: Software and Data Integrity Failures Java10
Slow Down OWASP 9: Security Logging and Monitoring Failures Java10
Brute Force ChallengeOWASP 9: Security Logging and Monitoring Failures Java10
Valid Deficit OWASP 4: Insecure Design NodeJS10