The bearer of this certificate earned 300 total points
by completing secure coding labs through Veracode Security Labs.
Labs are a form of secure code training that
involves hands-on-keyboard
exercises, where users demonstrate their abilities to exploit and patch
code using real applications.

amurali@veracode.com
f218dca044
14 Jan 2021
The following labs were completed toward certification:
Lab Name | Topic Name | Language | Points |
---|---|---|---|
Own the database [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | 10 | |
Parameterize all the things [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | 10 | |
Bugs in Debug [DEPRECATED] | OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] | 10 | |
eXternal Entity (injection) [DEPRECATED] | OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] | 10 | |
XML is always a challenge [DEPRECATED] Challenge | OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] | 10 | |
Helpful Stack Trace [DEPRECATED] Challenge | OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] | 10 | |
Can you see your reflection? [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | 10 | |
Own the database [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | 10 | |
Can you see your reflection? [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | 10 | |
Down with Uploads [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | 20 | |
Parameterize all the things [DEPRECATED] | OWASP 2017 A1: Injection [DEPRECATED] | 10 | |
Bobby Tables [DEPRECATED] Challenge | OWASP 2017 A1: Injection [DEPRECATED] | 10 | |
Really, really bad passwords [DEPRECATED] | OWASP 2017 A2: Broken Authentication [DEPRECATED] | 10 | |
Hash it, store it, salt - upgrade it [DEPRECATED] | OWASP 2017 A2: Broken Authentication [DEPRECATED] | 10 | |
Bugs in Debug [DEPRECATED] | OWASP 2017 A3: Sensitive Data Exposure [DEPRECATED] | 10 | |
eXternal Entity (injection) [DEPRECATED] | OWASP 2017 A4: XML External Entities (XXE) [DEPRECATED] | 10 | |
Fix the Sessions [DEPRECATED] | OWASP 2017 A5: Broken Access Control [DEPRECATED] | 10 | |
Jot down this key [DEPRECATED] | OWASP 2017 A6: Security Misconfiguration [DEPRECATED] | 10 | |
In a Pickle [DEPRECATED] | OWASP 2017 A8: Insecure Deserialization [DEPRECATED] | 10 | |
To Protect and to Serve Secure Cookies [DEPRECATED] | OWASP 2017 A5: Broken Access Control [DEPRECATED] | 20 | |
Jot down this key [DEPRECATED] | OWASP 2017 A6: Security Misconfiguration [DEPRECATED] | 10 | |
Suspicious Packages [DEPRECATED] | OWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED] | 10 | |
Slow Down [DEPRECATED] | OWASP 2017 A10: Insufficient Logging + Monitoring [DEPRECATED] | 10 | |
Down with Uploads [DEPRECATED] | OWASP 2017 A7: Cross-Site Scripting (XSS) [DEPRECATED] | 20 | |
Terrible Password [DEPRECATED] Challenge | OWASP 2017 A2: Broken Authentication [DEPRECATED] | 10 | |
Bad Cookie [DEPRECATED] Challenge | OWASP 2017 A5: Broken Access Control [DEPRECATED] | 10 | |
Outdated [DEPRECATED] Challenge | OWASP 2017 A9: Using Components with Known Vulnerabilities [DEPRECATED] | 10 |