About This Lesson

lesson screenshot

Part One

Introduces Server Side Request Forgeerey (SSRF) vulnerabilities, how to prevent SSRF, and covers what happened in the breach.

Part Two

Covers Web Application Firewalls (WAFs), introduces WAF bypasses techniques, and discusses how to prevent WAF issues.

Part Three

Introduces the AWS Instance Metadata Service, IAM Role best practices, and the secure storage of sensitive data.

Take the Capital One Breach Lesson

Start Lesson

Learn more about our Secure Development Training for Developers

Learn More