Services
Main menu

Services

Services & Competences
Digital Experience
Consulting & Academy
Engineering & Delivery
Cloud Native & DevOps
CX & Digital Commerce
Automation & AI
Services

Automation & AI

Automation & AI at the glance
genAI Consulting
Industries
Main menu

Industries

Industries Overview
Telecommunications
Financial Services
Public
Manufacturing
Media & Entertainment
Hidden Champions
About us
Main menu

About us

About us at the glance
Values & Culture
Philosophy
Sustainability & CSR
Insights
Main menu

Insights

Insights Overview
Blog
Insights

Blog

Blog at the glance
2024
Blog

2024

AOE at Container Days Conference 2024 in Hamburg
AOE is a Certified Kubernetes Service Provider
Go, Development Frameworks & Flamingo #3: Introduction to Flamingo
Happy Birthday, AOE!
Go, Development Frameworks & Flamingo #2: Pros and Cons of Development Frameworks
Go, Development Frameworks & Flamingo #1
The European Accessibility Act (EAA) 2025: A New Era of Inclusive Design
AOE Technology Radar Version #8 released
Checklist "Green IT - Practical application in the company"
Colorful Stripes for Schelmengraben Elementary School
Finnoscore study 2024: Retail banking is becoming increasingly accessible and free of media disruption
Unveiling the New AOE Tech Radar Tool version 4.0
Project managers and product owners: kind of the same thing, right?
Explaining the roles in agile software development – Backend Developer
Explaining the roles in agile software development – Frontend Developer
Launch AOE Careers: Beyond a typical career page
The future of content management
2023
Blog

2023

Explaining the roles in agile software development – Scrum Master
Explaining the roles in agile software development – Product Owner
Generative KI and Large Language Models (LLMs) – A Glimpse into the Future
AOE Technology Radar #7
Most family-friendly employer 2023
AOE in the intrinsify podcast
Cloudland talk: Container Vulnerability Management in Kubernetes
11 tips for a successful cloud migration
Zero Trust - the hard way
AOE Behind the Screens: Backend Developer Fabian
Future-proof IT security concept: What companies should know
AOE Technology Radar #6: What's new?
AOE Behind the Screens: Frontend Developer Klara
Cybersecurity trends: What's important in 2023?
Entscheiderfabrik: AOE, PLANFOX & PlanOrg with „Rethinking the digital patient journey“
DKMS registration: Why we participate
Articles
Events
Insights

Events

Events at the glance
IT-Tage Frankfurt
Container Days
AOE Summit
TechTalk Wiesbaden #3
BarCamp RheinMain
ANGA COM
TechTalk Wiesbaden
Cloudland
Marketing Club Mainz Wiesbaden at AOE
SEIBERT MEDIA OpenSpace with Friends
Fuck-up Night
DevOpsCon
Sustainable Future .digital
Girls'Day
Bare.ID: CSK Summit 2023
Usability Testessen
CSR Regio.Net Networking Workshop
TechTalk Wiesbaden
Press
Open Source
Tech Radar
Careers
Main menu

Careers

Jobs at AOE GmbH

Get in touch


We use HubSpot CRM to process and manage contact and information requests. Please accept the "Functional Cookies" and reload the page to load the contact form.

Services /
Cybersecurity & access management
Services / Cybersecurity & access management

OWASP Top 10 Training

Thinking like a hacker

1 day Remote
Inquire now

Challenges

The requirements for IT security are growing with the degree of digitalization. This is a situation that poses challenges for many companies. For hackers don’t stand still: They constantly develop – and they are researching new tools and ways to penetrate digital infrastructures.

Anyone who wants to protect their IT infrastructure has to know where the weak points on-site are and be familiar with potential attackers. Defensive strategies can only be effective if you can assess the threats realistically and if you know the attackers’ methods and procedures. The key to building experience and knowledge in the cybersecurity sector is the ability to imagine yourself practically in the attacker’s shoes.

Goal

Think like a hacker: Reveal the 10 most common security gaps in web applications – and prevent them.

In this training, the AOE Academy will present the OWASP TOP 10 and explain the list of the 10 most common attack vectors using practical examples in the programming languages Java, PHP, Go, and Python. In addition, you can do interactive exercises in our OWASP lab and thereby gain some real hands-on experience.

Target group

All development teams and developers

Content

Hands-on training, interactive lab & live hack: In the course of the training, the individual types of security gaps will be examined and traced and tried out in the OWASP lab. With the interactive OWASP LAB, participants can complete exercises on the topics and gain practical experience.

Training structure:

  1. Overview of the OWASP TOP 10
  2. Security Misconfiguration
  3. Injection
  4. Broken Authentication
  5. Insufficient Logging & Monitoring
  6. Broken Access Control
  7. Sensitive Data Exposure
  8. Cross-site Scripting (XSS)
  9. Using Component with known vulnerabilities
  10. Insecure Deserialization
  11. XML External Entities
  12. I noticed something unusual. What now?

A sneak peak into the OWASP Lab

Practical insight into our interactive lab (example of broken authenticator)

Organizational information

  • Suitable for all teams
  • Language: English or German, depending on preference
  • Time: 1 day
  • Location: online
  • Group size: from 5 to 8 participants
Martin Eckes

Martin Eckes

Project managers for the management / microtech GmbH
Optimal balance of specialized knowledge and practical examples! Thanks to the OWASP lab’s virtual test environment, our employees were able to apply what they learned practically right away and gain valuable experiences for their day-to-day work. The training is a must-have for developers!
Bastian Ike

Our trainer: Bastian Ike

Bastian Ike is Security Division Lead on AOE’s Cybersecurity Team. For years, AOE has successfully helped companies implement IAM systems, keycloak projects, penetration tests, DevSecOps, and security in microservice architectures.