Veracode Security Labs Champion Level 3 Certificate

The bearer of this certificate earned 300 total points by completing secure coding labs through Veracode Security Labs. Labs are a form of secure code training that involves hands-on-keyboard exercises, where users demonstrate their abilities to exploit and patch code using real applications.
The following labs were completed toward certification:
Lab NameTopic NameLanguagePoints
Own the database [DEPRECATED] OWASP 2017 A1: Injection [DEPRECATED] Python Django10
Parameterize all the things [DEPRECATED] OWASP 2017 A1: Injection [DEPRECATED] Python Django10
Bugs in Debug [DEPRECATED] OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] Python Django10
eXternal Entity (injection) [DEPRECATED] OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] Python Django10
XML is always a challenge [DEPRECATED] ChallengeOWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] Python Django10
Helpful Stack Trace [DEPRECATED] ChallengeOWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] Python Django10
Can you see your reflection? [DEPRECATED] OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] Python Django10
Own the database [DEPRECATED] OWASP 2017 A1: Injection [DEPRECATED] Java10
Can you see your reflection? [DEPRECATED] OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] Java10
Down with Uploads [DEPRECATED] OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] Java20
Parameterize all the things [DEPRECATED] OWASP 2017 A1: Injection [DEPRECATED] Java10
Bobby Tables [DEPRECATED] ChallengeOWASP 2017 A1: Injection [DEPRECATED] Java10
Really, really bad passwords [DEPRECATED] OWASP 2017 A2: Broken Authentication [DEPRECATED] Java10
Hash it, store it, salt - upgrade it [DEPRECATED] OWASP 2017 A2: Broken Authentication [DEPRECATED] Java10
Bugs in Debug [DEPRECATED] OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] Java10
eXternal Entity (injection) [DEPRECATED] OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] Java10
Fix the Sessions [DEPRECATED] OWASP 2017 A5: Broken Access Control [DEPRECATED] Java10
Jot down this key [DEPRECATED] OWASP 2017 A6: Security Misconfiguration [DEPRECATED] Java10
In a Pickle [DEPRECATED] OWASP 2017 A8: Insecure Deserialization [DEPRECATED] Java10
To Protect and to Serve Secure Cookies [DEPRECATED] OWASP 2017 A5: Broken Access Control [DEPRECATED] .NET20
Jot down this key [DEPRECATED] OWASP 2017 A6: Security Misconfiguration [DEPRECATED] .NET10
Suspicious Packages [DEPRECATED] OWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED] Java10
Slow Down [DEPRECATED] OWASP 2017 A10: Insufficient Logging + Monitoring [DEPRECATED] Java10
Down with Uploads [DEPRECATED] OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] .NET20
Terrible Password [DEPRECATED] ChallengeOWASP 2017 A2: Broken Authentication [DEPRECATED] Python Flask10
Bad Cookie [DEPRECATED] ChallengeOWASP 2017 A5: Broken Access Control [DEPRECATED] Python Flask10
Outdated [DEPRECATED] ChallengeOWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED] Python Flask10