The bearer of this certificate earned 300 total points
by completing secure coding labs through Veracode Security Labs.
Labs are a form of secure code training that
involves hands-on-keyboard
exercises, where users demonstrate their abilities to exploit and patch
code using real applications.
Ashish Sabne
2bfcd1a3b8
05 Apr 2023
The following labs were completed toward certification:
| Lab Name | Topic Name | Language | Points |
|---|---|---|---|
| Down with Uploads [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] |  NodeJS | 20 |
| Can you see your reflection? [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | NodeJS | 10 |
| Bugs in Debug | OWASP 2021 A2: Cryptographic Failures [DEPRECATED] | NodeJS | 10 |
| Bad Cookie Challenge | OWASP 2021 A1: Broken Access Control [DEPRECATED] | NodeJS | 10 |
| One ID to Access All Objects [DEPRECATED] | OWASP 2019 API 1: Broken Object Level Authorization [DEPRECATED] |  .NET | 10 |
| Reflected XSS and input formatting [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] |  Rails | 10 |
| Down with Uploads [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | .NET | 20 |
| Really, really bad passwords [DEPRECATED] | OWASP 2019 API 2: Broken User Authentication [DEPRECATED] | .NET | 10 |
| Bugs in Debug [DEPRECATED] | OWASP 2019 API 3: Excessive Data Exposure [DEPRECATED] | .NET | 10 |
| Stronger IDs [DEPRECATED] | OWASP 2019 API 1: Broken Object Level Authorization [DEPRECATED] | .NET | 10 |
| Fix the Sessions | OWASP 2021 A1: Broken Access Control [DEPRECATED] |  Java | 10 |
| Revealing Schemas [DEPRECATED] | OWASP 2019 API 3: Excessive Data Exposure [DEPRECATED] | .NET | 10 |
| Bad Design Compromises Security [DEPRECATED] | OWASP 2019 API 6: Mass Assignment [DEPRECATED] | .NET | 10 |
| To Protect and To Serve Secure Cookies | OWASP 2021 A1: Broken Access Control [DEPRECATED] | .NET | 20 |
| Own the Database | OWASP 2021 A3: Injection [DEPRECATED] | .NET | 10 |
| Secret Logging Challenge | OWASP 2021 A2: Cryptographic Failures [DEPRECATED] |  Python Flask | 10 |
| Parameterize all the things | OWASP 2021 A3: Injection [DEPRECATED] | .NET | 10 |
| Timing is everything Challenge | OWASP 2021 A3: Injection [DEPRECATED] |  Python Django | 10 |
| Can you see your reflection? | OWASP 2021 A3: Injection [DEPRECATED] | NodeJS | 10 |
| Down with Uploads | OWASP 2021 A3: Injection [DEPRECATED] | .NET | 20 |
| Helpful Stack Trace Challenge | OWASP 2021 A2: Cryptographic Failures [DEPRECATED] | .NET | 10 |
| Stored XSS versus CSP | OWASP 2021 A3: Injection [DEPRECATED] | .NET | 20 |
| To Protect and To Serve Secure Cookies | OWASP 2021 A1: Broken Access Control [DEPRECATED] | NodeJS | 10 |
| Bobby Tables Challenge | OWASP 2021 A3: Injection [DEPRECATED] | .NET | 10 |
| Loose Lips Sink Servers | OWASP 2021 A1: Broken Access Control [DEPRECATED] | NodeJS | 10 |