Certificate - Security Labs

The bearer of this certificate earned 300 total points by completing secure coding labs through Veracode Security Labs. Labs are a form of secure code training that involves hands-on-keyboard exercises, where users demonstrate their abilities to exploit and patch code using real applications.

Jeremy Wolf

e09a803168

21 Mar 2023

The following labs were completed toward certification:

Lab Name	Topic Name	Language	Points
Down with Uploads [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	NodeJS	20
Can you see your reflection? [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	NodeJS	10
Check your sources [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Java	20
Can you see your reflection? [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Java	10
In a Pickle [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	.NET	10
Parameterize all the things [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	.NET	10
In a Pickle [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Java	10
Reflected XSS and input formatting [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	Rails	10
Can you see your reflection? [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	.NET	10
Stored XSS versus CSP [DEPRECATED]	OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED]	.NET	10
Own the Database	OWASP 2021 A3: Injection [DEPRECATED]	.NET	10
Parameterize all the things	OWASP 2021 A3: Injection [DEPRECATED]	.NET	10
Timing is everything Challenge	OWASP 2021 A3: Injection [DEPRECATED]	Python Django	10
Down with Uploads	OWASP 2021 A3: Injection [DEPRECATED]	NodeJS	20
Can you see your reflection?	OWASP 2021 A3: Injection [DEPRECATED]	NodeJS	10
Reflected XSS and input formatting	OWASP 2021 A3: Injection [DEPRECATED]	Rails	10
To Protect and To Serve Secure Cookies	OWASP 2021 A1: Broken Access Control [DEPRECATED]	NodeJS	10
Bobby Tables Challenge	OWASP 2021 A3: Injection [DEPRECATED]	.NET	10
Own the database [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	NodeJS	10
Parameterize all the things	OWASP 2021 A3: Injection [DEPRECATED]	NodeJS	10
Parameterize all the things [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	NodeJS	10
Parameterize all the things [DEPRECATED]	OWASP 2017 A1: Injection [DEPRECATED]	Java	10
Mongo: like SQL, but messier [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	NodeJS	10
Tell Mongo "no-go" for untrusted code [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	NodeJS	10
User-Provided Users [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Rails	10
In a Pickle [DEPRECATED]	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Python Flask	10
Deserialization [DEPRECATED] Challenge	OWASP 2017 A8: Insecure Deserialization [DEPRECATED]	Python Flask	10

Veracode Security Labs Champion Level 3 Certificate