790€

100% is paid upon registration.

10% off for Barcelona Code School alumni

• Overall understanding of how vulnerabilities are found and exploited
• Technical understanding of the most common occurring Web vulnerabilities (CSRF, XSS, SQLi, SSRF, IDOR, etc.)
• Learn how to avoid introducing most common occurring Web vulnerabilities
• Learn how to fix most common occurring Web vulnerabilities
• Cryptography fundamentals
• Tooling to identify web vulnerabilities
• Hardening of websites and infrastructure to reduce the impact of vulnerabilities exploitation
• Web technologies from cybersecurity perspective (javascript, cookies, HTTP protocol, certificates, etc.)
• Browser Security model
• Permissions & User roles (AuthN, AuthZ, principle of least privilege)

This course is suitable for the developers, from juniors to seniors, without any training in CyberSec.

To benefit the most we expect you to be familiar with such things as implementing authentication, building a server, working with database, APIs, sending emails from the server, understanding user roles, HTTP requests and responses...

You will need to bring your laptop to participate in the practical tasks aimed at teaching you how to pentest your software and protect from the known attacks.

• Javascript essentials knowledge
• Familiarity with how databases work at a basic level
• Being comfortable using the browser (developer tools, extensions)

• Standout from the rest of developers with your cybersecurity knowledge
• Become a stronger engineer by following secure best practices
• Be the security Subject Matter Expert in your team
• Take additional responsibilities by reviewing your team’s code for vulnerabilities
• Mentor and educate other engineers in cybersecurity essentials
• Start a new cybersecurity career protecting your organization’s exposed assets

Martin Vigo

Security expert, researcher and educator

Martin Vigo is a security researcher and ethical hacker with a strong background in Product Security and Software Engineering who has made significant contributions to the cybersecurity community. With a focus on mobile security, identity and authentication, code reviews, and penetration testing, Martin has dedicated himself to ensuring the security of cloud-based systems.

He has presented at various international conferences and has been involved in finding vulnerabilities and developing secure solutions for different organizations. As the Founder of Triskel Security, a growing security consulting company, he provides comprehensive information security solutions to clients. Martin is also recognized as the host and producer of the Spanish cybersecurity podcast "Tierra de Hackers," which covers the latest cybersecurity news and trends.

With a primary interest in offensive security, he has delivered captivating presentations on various topics, including voicemail cracking for accounts takeover, exploiting password managers, OSINT (Open-Source Intelligence), leveraging Apple's Facetime for spy programs, and best practices in mobile app development. These presentations have been showcased at prestigious conferences such as DEF CON, Blackhat EU, Ekoparty, BSides Las Vegas, Kaspersky Security Analyst Summit, and Shakacon.