SecurityBeginnerFREE

Software Security Fundamentals

Learn how software gets attacked and how to defend it. Cover the OWASP Top 10, secure coding in Python and JavaScript, authentication systems, cryptography, POPIA compliance and security testing through practical code-first lessons built for the South African context.

20 hours

40 lessons

Certificate included

Instructor

JP Instructor

Already have an account? Sign in

This course includes:

20 hours of comprehensive lessons
Hands-on coding exercises and challenges
Code examples with syntax highlighting
Certificate of completion
Lifetime access to all content
Mobile-friendly, works offline

Course Curriculum

Module 1: Introduction to Software Security

Why security matters, who the attackers are, how they think and where security fits in the development lifecycle.

7 lessons

Why Security Matters

Preview

6 minutes

Preview Lesson

The Threat Landscape

6 minutes

Security Principles: CIA Triad and Beyond

6 minutes

The South African Context

6 minutes

How Attackers Think

6 minutes

Security in the Software Development Lifecycle

6 minutes

Quiz: Introduction to Software Security

10 minutes

Module 2: Web Application Vulnerabilities

The OWASP Top 10 and the most common web application vulnerabilities, from injection to misconfiguration.

7 lessons

The OWASP Top 10 Overview

6 minutes

Injection Attacks: SQL Injection

6 minutes

Cross-Site Scripting (XSS)

6 minutes

Cross-Site Request Forgery and Broken Access Control

6 minutes

Broken Authentication and Session Management

6 minutes

Security Misconfiguration and Sensitive Data Exposure

6 minutes

Quiz: Web Application Vulnerabilities

10 minutes

Module 3: Secure Coding Practices

Practical secure coding techniques for input validation, parameterised queries, output encoding, error handling and dependency management.

6 lessons

Input Validation and Sanitisation

6 minutes

Parameterised Queries and ORM Safety

6 minutes

Output Encoding and Template Safety

6 minutes

Error Handling and Logging

6 minutes

Dependency Management and Supply Chain Security

6 minutes

Quiz: Secure Coding Practices

10 minutes

Module 4: Authentication and Access Control

Secure password storage, session management, tokens, OAuth and multi-factor authentication.

6 lessons

Password Storage Done Right

6 minutes

Sessions, Cookies and Tokens

6 minutes

JSON Web Tokens (JWT)

6 minutes

OAuth 2.0 and Social Login

6 minutes

Multi-Factor Authentication and Passwordless

6 minutes

Authentication and Access Control

10 minutes

Module 5: Cryptography and Data Protection

Hashing, symmetric and asymmetric encryption, TLS, POPIA compliance and practical data protection techniques.

6 lessons

Hashing: Integrity Without Secrets

6 minutes

Symmetric Encryption: AES in Practice

6 minutes

Asymmetric Encryption and TLS

6 minutes

POPIA Compliance for Developers

6 minutes

Data Protection in Practice

6 minutes

Cryptography and Data Protection

10 minutes

Module 6: Security Testing and Defence

Security headers, CORS, vulnerability scanning, penetration testing, incident response and ICT governance.

7 lessons

Security Headers and Browser Defences

6 minutes

CORS: The Misunderstood Guardian

6 minutes

Vulnerability Scanning and Static Analysis

6 minutes

Penetration Testing Basics

6 minutes

Logging, Monitoring and Incident Response

6 minutes

King IV and ICT Governance

6 minutes

Security Testing and Defence

10 minutes

Module 7: Capstone Project: Secure Login System

Secure a vulnerable login system from the ground up. This multi-step project brings together everything you have learned in Software Security Fundamentals: password hashing, injection prevention, input validation, token-based authentication, rate limiting and security auditing.

1 lessons

Secure a Vulnerable Login System

120 minutes

Ready to Start Learning?

Join thousands of students mastering Security with HardCoded