The bearer of this certificate earned 300 total points
by completing secure coding labs through Veracode Security Labs.
Labs are a form of secure code training that
involves hands-on-keyboard
exercises, where users demonstrate their abilities to exploit and patch
code using real applications.
Mark Chan
c0c746f739
05 Dec 2021
The following labs were completed toward certification:
| Lab Name | Topic Name | Language | Points |
|---|---|---|---|
| Can you keep a secret? [DEPRECATED] | OWASP 2017 A6: Security Misconfiguration [DEPRECATED] |  NodeJS | 10 |
| No Going Back Challenge | General Application Security: CWE-601 Open Redirects | NodeJS | 10 |
| Encrypting, encoding and hashing | Bash Terminal Usage: Intermediate |  Bash shell | 10 |
| Nano for text editing | Bash Terminal Usage: Intermediate | Bash shell | 10 |
| Introduction to bash scripting | Bash Terminal Usage: Intermediate | Bash shell | 10 |
| The Art of Redirection | General Application Security: CWE-601 Open Redirects | NodeJS | 10 |
| Access and Erasure | General Application Security: User Data Privacy | NodeJS | 20 |
| PII Storage | General Application Security: User Data Privacy | NodeJS | 10 |
| Informed Consent | General Application Security: User Data Privacy | NodeJS | 10 |
| Really, really bad passwords [DEPRECATED] | OWASP 2017 A2: Broken Authentication [DEPRECATED] |  .NET | 10 |
| Fix the Sessions [DEPRECATED] | OWASP 2017 A5: Broken Access Control [DEPRECATED] |  Java | 10 |
| Parameterize all the things [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | .NET | 10 |
| To Protect and to Serve Secure Cookies [DEPRECATED] | OWASP 2017 A5: Broken Access Control [DEPRECATED] | .NET | 20 |
| Bugs in Debug [DEPRECATED] | OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] | .NET | 10 |
| Rectification | General Application Security: User Data Privacy | NodeJS | 10 |
| Introduction to Bash 1 | Bash Terminal Usage: Beginner | Bash shell | 10 |
| Introduction to Bash 2 | Bash Terminal Usage: Beginner | Bash shell | 10 |
| Introduction to Bash 3 | Bash Terminal Usage: Beginner | Bash shell | 10 |
| Bad Cookie [DEPRECATED] Challenge | OWASP 2017 A5: Broken Access Control [DEPRECATED] | .NET | 10 |
| Own the database [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | NodeJS | 10 |
| Bobby Tables [DEPRECATED] Challenge | OWASP 2017 A1: Injection [DEPRECATED] | .NET | 10 |
| Data Portability | General Application Security: User Data Privacy | NodeJS | 10 |
| Authentication Bypass [DEPRECATED] | OWASP 2017 A2: Broken Authentication [DEPRECATED] | NodeJS | 10 |
| Terrible Password [DEPRECATED] Challenge | OWASP 2017 A2: Broken Authentication [DEPRECATED] | .NET | 10 |
| Helpful Stack Trace [DEPRECATED] Challenge | OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] | .NET | 10 |
| XML is always a challenge [DEPRECATED] Challenge | OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] | .NET | 10 |
| Hash it, store it, salt - upgrade it [DEPRECATED] | OWASP 2017 A2: Broken Authentication [DEPRECATED] | NodeJS | 10 |
| eXternal Entity (injection) [DEPRECATED] | OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] | .NET | 10 |