Uncertain Times — Infosec's here to help. Learn about remote testing and other COVID-19 resources.

Learn the OWASP Top Ten

The OWASP Top Ten learning path will help you understand each of the security risks listed in the OWASP Top Ten. The "Top Ten" is a list of the most serious and prevalent security risks that exist for web applications today. As web applications continue to grow in number and popularity, it becomes increasingly important to understand the security risks that are present in these applications. These risks include things like Injection Attacks, Security Misconfiguration, Broken Authentication, XML Attacks, Cross-Site Scripting and many more!

3 courses  //   12 videos  //   7 hours of training

Free training week — 600+ on-demand courses and hands-on labs

OWASP Top Ten training

In this path, you will learn how the Top Ten list is created, and you will gain a solid understand of each security risk. While the information in the OWASP Top Ten is technical and can be difficult to understand at times, John does a great job of clearly explaining each topic in a very easy-to-understand way. He uses a mix of slides, pictures, videos, real-world examples and demos to help you understand the material. As you progress through each course, you will have the knowledge necessary to know if your web application is vulnerable to any of these risks, and you will understand how to protect yourself from attackers who want to exploit these vulnerabilities.

Learning path components


What you’ll learn.

  • Common web application security risks
  • How OWASP determines each risk’s severity and ranking
  • Details of how each security risk works

Who is this for?

This skill path is designed for:

  • Web application developers
  • Web application administrators
  • IT and security practitioners
  • Cybersecurity managers
  • Anyone interested in learning about common web application risks

Train on your schedule


Infosec Skills

  • 600+ courses
  • 100s of hands-on labs and projects
  • 70+ role-based learning paths
  • Skill assessments
  • Custom learning paths
  • Custom certification practice exams
  • Cloud-hosted cyber ranges
  • Infosec peer community support

Infosec Skills boot camp

  • Live, instructor-led training
  • Available in-person or live online
  • All Infosec Skills content from the minute you enroll to 90 days following your boot camp
  • Certification exam voucher
  • 100% Satisfaction Guarantee
  • Exam Pass Guarantee


Infosec Skills Teams

$599 per learner / year

  • All Infosec Skills content for the year
  • Team boot camp discounts — online or onsite (not included with subscription)
  • Team administration and reporting
  • Custom team learning paths
  • Transferable licenses
  • Dedicated client success manager

Award-winning training that you can trust

Best Software - Highest Satisfaction

Infosec Skills

Best IT Security-related Training Program

Infosec Skills

Best Cybersecurity Education Provider & Best Security Education Platform

Infosec Skills

Most Innovative Product - Cybersecurity Training for Infosec Professionals

Infosec Skills

Global Excellence - Cyber Security Education & Training

Infosec Skills

Exceptional learning experiences powered by LX Labs cyber expertise

Infosec Skills courses and labs are powered by LX Labs — our elite team of cyber SMEs, learning specialists and community of top-ranked security instructors, published authors and sought-after industry leaders. We rigorously vet all Infosec Skills training resources to guarantee they meet certification and compliance requirements and align with recognized guidelines like the NICE Cybersecurity Workforce Framework.

LX Labs

SC Media names Infosec Skills Best IT Security Training

See for yourself why Infosec Skills leads the cybersecurity training industry.