Certificate - Security Labs

The bearer of this certificate earned 300 total points by completing secure coding labs through Veracode Security Labs. Labs are a form of secure code training that involves hands-on-keyboard exercises, where users demonstrate their abilities to exploit and patch code using real applications.

Joseph Conery

5b176efe94

18 Jan 2021

The following labs were completed toward certification:

Lab Name	Topic Name	Language	Points
Own the database [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	Python Django	10
Down with Uploads [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Python Django	20
Parameterize all the things [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	Python Django	10
Bobby Tables [DEPRECATED] Challenge	OWASP 2017 A1: Injection [DEPRECATED]	Python Django	10
Really, really bad passwords [DEPRECATED]	OWASP 2017 A2: Broken Authentication [DEPRECATED]	Python Django	10
Hash it, store it, salt - upgrade it [DEPRECATED]	OWASP 2017 A2: Broken Authentication [DEPRECATED]	Python Django	10
Bugs in Debug [DEPRECATED]	OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED]	Python Django	10
eXternal Entity (injection) [DEPRECATED]	OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED]	Python Django	10
XML is always a challenge [DEPRECATED] Challenge	OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED]	Python Django	10
Suspicious Packages [DEPRECATED]	OWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED]	Python Django	10
In a Pickle [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Python Django	10
Helpful Stack Trace [DEPRECATED] Challenge	OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED]	Python Django	10
Authentication Bypass [DEPRECATED]	OWASP 2017 A2: Broken Authentication [DEPRECATED]	NodeJS	10
Can you see your reflection? [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Python Django	10
PII Storage	General Application Security: User Data Privacy	NodeJS	10
Informed Consent	General Application Security: User Data Privacy	NodeJS	10
Access and Erasure	General Application Security: User Data Privacy	NodeJS	20
Rectification	General Application Security: User Data Privacy	NodeJS	10
Data Portability	General Application Security: User Data Privacy	NodeJS	10
Timing is everything [DEPRECATED] Challenge	OWASP 2017 A1: Injection [DEPRECATED]	Python Django	10
Alert [DEPRECATED] Challenge	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Python Django	10
Persistence [DEPRECATED] Challenge	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Python Django	20
Terrible Password [DEPRECATED] Challenge	OWASP 2017 A2: Broken Authentication [DEPRECATED]	Python Flask	10
Secret Logging [DEPRECATED] Challenge	OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED]	Python Flask	10
External Resolution [DEPRECATED] Challenge	OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED]	Python Flask	10
Deserialization [DEPRECATED] Challenge	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Python Flask	10
Outdated [DEPRECATED] Challenge	OWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED]	Python Flask	10

Veracode Security Labs Champion Level 3 Certificate