The 2-day "Web Application Security Training" covers the following goals:
* Build security awareness for web applications
* Get to know attack methods of hackers
* Learn ways to discover security vulnerabilities
* Learn the basics of secure web development
The training starts with a motivation of the topic and then dives head-first into the most severe vulnerabilities of web applications based on the OWASP Top 10 list. The attacks on those vulnerabilities are discussed and can be tried out by the students in the intentionally insecure web application OWASP Juice Shop. For each vulnerability possible countermeasures and mitigations are discussed after the practical hacking session.