The bearer of this certificate earned 300 total points
by completing secure coding labs through Veracode Security Labs.
Labs are a form of secure code training that
involves hands-on-keyboard
exercises, where users demonstrate their abilities to exploit and patch
code using real applications.
Udayanga Gamage
7cc86e1b95
23 Apr 2024
The following labs were completed toward certification:
| Lab Name | Topic Name | Language | Points |
|---|---|---|---|
| Neglected endpoints [DEPRECATED] | OWASP 2019 API 5: Broken Function Level Authorization [DEPRECATED] |  Java | 10 |
| One ID to Access All Objects [DEPRECATED] | OWASP 2019 API 1: Broken Object Level Authorization [DEPRECATED] | Java | 10 |
| Stronger IDs [DEPRECATED] | OWASP 2019 API 1: Broken Object Level Authorization [DEPRECATED] | Java | 10 |
| Valid Deficit | OWASP 2021 A4: Insecure Design [DEPRECATED] | Java | 10 |
| Parameterize all the things | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |
| Fix the Sessions | OWASP 2021 A1: Broken Access Control [DEPRECATED] | Java | 10 |
| Get there from here | OWASP 2021 A10: Server-Side Request Forgery [DEPRECATED] | Java | 10 |
| Really, really bad passwords [DEPRECATED] | OWASP 2019 API 2: Broken User Authentication [DEPRECATED] | Java | 10 |
| Bugs in Debug | OWASP 2021 A2: Cryptographic Failures [DEPRECATED] | Java | 10 |
| Own the Database | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |
| Down with Uploads | OWASP 2021 A3: Injection [DEPRECATED] | Java | 20 |
| Can you see your reflection? | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |
| Secrets in the Log | OWASP 2021 A1: Broken Access Control [DEPRECATED] | Java | 10 |
| Check your sources | OWASP 2021 A3: Injection [DEPRECATED] | Java | 20 |
| Jot down this key | OWASP 2021 A5: Security Misconfiguration [DEPRECATED] | Java | 10 |
| Secret Admin Challenge | OWASP 2021 A5: Security Misconfiguration [DEPRECATED] | Java | 10 |
| eXternal Entity (injection) | OWASP 2021 A5: Security Misconfiguration [DEPRECATED] | Java | 10 |
| Suspicious Packages | OWASP 2021 A6: Vulnerable and Outdated Components [DEPRECATED] | Java | 10 |
| Really, really bad passwords | OWASP 2021 A7: Identification and Authentication Failures [DEPRECATED] | Java | 10 |
| Hash it, store it, salt - upgrade it | OWASP 2021 A7: Identification and Authentication Failures [DEPRECATED] | Java | 10 |
| In a Pickle | OWASP 2021 A8: Software and Data Integrity Failures [DEPRECATED] | Java | 10 |
| Slow Down | OWASP 2021 A9: Security Logging and Monitoring Failures [DEPRECATED] | Java | 10 |
| Bobby Tables Challenge | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |
| Terrible Password Challenge | OWASP 2021 A7: Identification and Authentication Failures [DEPRECATED] | Java | 10 |
| Making Secure Decisions | OWASP 2021 A4: Insecure Design [DEPRECATED] | Java | 10 |
| Alert Challenge | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |
| Outdated Dependencies Challenge | OWASP 2021 A6: Vulnerable and Outdated Components [DEPRECATED] | Java | 10 |
| Persistence Challenge | OWASP 2021 A3: Injection [DEPRECATED] | Java | 10 |