{"id":1281,"date":"2023-01-27T11:59:32","date_gmt":"2023-01-27T11:59:32","guid":{"rendered":"https:\/\/infobip.com\/developers\/?p=1281"},"modified":"2023-09-11T14:31:52","modified_gmt":"2023-09-11T14:31:52","slug":"infobip-application-security-training-open-source","status":"publish","type":"post","link":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source","title":{"rendered":"Handle AppSec like Infobip: Our training platform is now open-source!"},"content":{"rendered":"\n<p>You know what they say about app security &#8211;&nbsp;99% secure is 100% vulnerable.&nbsp;To help in the ever-going fight against malicious software and those who peddle it, we are <strong>open-sourcing our training platform for web application security.&nbsp;&nbsp;<\/strong><\/p>\n\n\n\n<p>A while ago, Infobip&#8217;s Application Security Team searched for a way to <strong>keep developers up to date with common vulnerabilities <\/strong>running in the wild. We asked ourselves if we should outsource education to some 3rd party or use something free that is already available on the market.&nbsp;&nbsp;<\/p>\n\n\n\n<p>Infobip reaches billions of users, so you can imagine just how much sensitive information goes through our system \u2013 and why <strong>security is a top priority.<\/strong> That\u2019s why, after a bit of tinkering (and copious amounts of coffee), we decided to build a training platform for our developers and present it in live sessions.&nbsp;&nbsp;<\/p>\n\n\n\n<p><a href=\"https:\/\/github.com\/infobip\/infobip-appsec-edu\">The platform<\/a> comes as two separate web applications, one solely based on <strong>Java<\/strong> and a combination of <strong>ReactJS and Node.js<\/strong>, a combination that needs more proper resources in the community.&nbsp;&nbsp;&nbsp;<br>&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Protect your app against top 10 vulnerabilities \u2013 and bad coding practices&nbsp;<\/strong>&nbsp;<br>&nbsp;<\/h2>\n\n\n\n<p>The platform can be used as a <strong>self-paced course<\/strong> or for i<strong>nstructor-led workshops<\/strong>, for<strong> individuals<\/strong> or <strong>entire departments<\/strong>. Given the ever-evolving nature of threats to app securities, both seasoned developers and beginners can benefit from the training.&nbsp;<\/p>\n\n\n\n<p>Not to mention that setting it up is as simple as running a docker container.&nbsp;&nbsp;<\/p>\n\n\n\n<p>You&#8217;ll learn how to keep safe from <strong>OWASP Top 10 vulnerabilities:&nbsp;&nbsp;<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>SQL injection,&nbsp;&nbsp;<\/li>\n\n\n\n<li>&nbsp;command injection,&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>XML external entities injection,&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>cross-site scripting,&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>template injection,&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>server-side request forgery and&nbsp;&nbsp;&nbsp;<\/li>\n\n\n\n<li>path traversal&nbsp;&nbsp;&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>\u2026 sprinkled with some common <strong>bad coding practices<\/strong>.&nbsp;&nbsp;&nbsp;<br>&nbsp;<\/p>\n\n\n\n<p>Get the <a href=\"https:\/\/github.com\/infobip\/infobip-appsec-edu\" target=\"_blank\" rel=\"noreferrer noopener\">source code and documentation on our GitHub.<\/a>&nbsp;<\/p>\n\n\n\n<p>If you find bugs or want to pitch in, we are more than happy to receive feedback and contributions ideas.&nbsp;&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>You know what they say about app security &#8211;\u00a099% secure is 100% vulnerable.\u00a0That&#8217;s why we&#8217;re open-sourcing our training platform for web application security.\u00a0\u00a0<\/p>\n","protected":false},"author":18,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_import_markdown_pro_load_document_selector":0,"_import_markdown_pro_submit_text_textarea":"","footnotes":""},"categories":[27,249,252],"tags":[68,70],"coauthors":[163],"class_list":["post-1281","post","type-post","status-publish","format-standard","hentry","category-announcement","category-devops-and-security","category-tools","tag-appsec","tag-open-source"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.6 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Application Security Training from Infobip is now open-source<\/title>\n<meta name=\"description\" content=\"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Application Security Training from Infobip is now open-source\" \/>\n<meta property=\"og:description\" content=\"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\" \/>\n<meta property=\"og:site_name\" content=\"Infobip Developers Hub\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/infobip\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-01-27T11:59:32+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-09-11T14:31:52+00:00\" \/>\n<meta name=\"author\" content=\"Patrik Dolovski\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@InfobipDev\" \/>\n<meta name=\"twitter:site\" content=\"@InfobipDev\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Patrik Dolovski\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\"},\"author\":{\"name\":\"Patrik Dolovski\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/40ce9d28d1f1923cbcdcbfedb0cd2508\"},\"headline\":\"Handle AppSec like Infobip: Our training platform is now open-source!\",\"datePublished\":\"2023-01-27T11:59:32+00:00\",\"dateModified\":\"2023-09-11T14:31:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\"},\"wordCount\":352,\"publisher\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/#organization\"},\"keywords\":[\"AppSec\",\"open-source\"],\"articleSection\":[\"Announcement\",\"DevOps and Security\",\"Tools\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\",\"url\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\",\"name\":\"Application Security Training from Infobip is now open-source\",\"isPartOf\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/#website\"},\"datePublished\":\"2023-01-27T11:59:32+00:00\",\"dateModified\":\"2023-09-11T14:31:52+00:00\",\"description\":\"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.infobip.com\/developers\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Handle AppSec like Infobip: Our training platform is now open-source!\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#website\",\"url\":\"https:\/\/www.infobip.com\/developers\/\",\"name\":\"Infobip Developers Hub\",\"description\":\"Build meaningful customer relationships across any channel\",\"publisher\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.infobip.com\/developers\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#organization\",\"name\":\"Infobip Developers Hub\",\"url\":\"https:\/\/www.infobip.com\/developers\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.infobip.com\/developers\/wp-content\/uploads\/2023\/03\/Infobip_logo_favicon.png\",\"contentUrl\":\"https:\/\/www.infobip.com\/developers\/wp-content\/uploads\/2023\/03\/Infobip_logo_favicon.png\",\"width\":696,\"height\":696,\"caption\":\"Infobip Developers Hub\"},\"image\":{\"@id\":\"https:\/\/www.infobip.com\/developers\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/infobip\/\",\"https:\/\/x.com\/InfobipDev\",\"https:\/\/www.youtube.com\/channel\/UCUPSTy53VecI5GIir3J3ZbQ\",\"https:\/\/github.com\/infobip-community\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/40ce9d28d1f1923cbcdcbfedb0cd2508\",\"name\":\"Patrik Dolovski\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/image\/5dfff573013f9e58bf9cccdabefc65f0\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/502c23d2e6d3bc874bbd731bd86d1efaab7a99435b388078483f06febf9a8081?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/502c23d2e6d3bc874bbd731bd86d1efaab7a99435b388078483f06febf9a8081?s=96&d=mm&r=g\",\"caption\":\"Patrik Dolovski\"},\"description\":\"Patrik works as an application security engineer at Infobip and is a tinkerer who likes to break stuff.\",\"url\":\"https:\/\/www.infobip.com\/developers\/blog\/author\/patrik-dolovski\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Application Security Training from Infobip is now open-source","description":"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source","og_locale":"en_US","og_type":"article","og_title":"Application Security Training from Infobip is now open-source","og_description":"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.","og_url":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source","og_site_name":"Infobip Developers Hub","article_publisher":"https:\/\/www.facebook.com\/infobip\/","article_published_time":"2023-01-27T11:59:32+00:00","article_modified_time":"2023-09-11T14:31:52+00:00","author":"Patrik Dolovski","twitter_card":"summary_large_image","twitter_creator":"@InfobipDev","twitter_site":"@InfobipDev","twitter_misc":{"Written by":"Patrik Dolovski","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#article","isPartOf":{"@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source"},"author":{"name":"Patrik Dolovski","@id":"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/40ce9d28d1f1923cbcdcbfedb0cd2508"},"headline":"Handle AppSec like Infobip: Our training platform is now open-source!","datePublished":"2023-01-27T11:59:32+00:00","dateModified":"2023-09-11T14:31:52+00:00","mainEntityOfPage":{"@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source"},"wordCount":352,"publisher":{"@id":"https:\/\/www.infobip.com\/developers\/#organization"},"keywords":["AppSec","open-source"],"articleSection":["Announcement","DevOps and Security","Tools"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source","url":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source","name":"Application Security Training from Infobip is now open-source","isPartOf":{"@id":"https:\/\/www.infobip.com\/developers\/#website"},"datePublished":"2023-01-27T11:59:32+00:00","dateModified":"2023-09-11T14:31:52+00:00","description":"We are making our application security platform available to everyone! Setting it up is as simple as running a docker container.","breadcrumb":{"@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.infobip.com\/developers\/blog\/infobip-application-security-training-open-source#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.infobip.com\/developers\/"},{"@type":"ListItem","position":2,"name":"Handle AppSec like Infobip: Our training platform is now open-source!"}]},{"@type":"WebSite","@id":"https:\/\/www.infobip.com\/developers\/#website","url":"https:\/\/www.infobip.com\/developers\/","name":"Infobip Developers Hub","description":"Build meaningful customer relationships across any channel","publisher":{"@id":"https:\/\/www.infobip.com\/developers\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.infobip.com\/developers\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.infobip.com\/developers\/#organization","name":"Infobip Developers Hub","url":"https:\/\/www.infobip.com\/developers\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infobip.com\/developers\/#\/schema\/logo\/image\/","url":"https:\/\/www.infobip.com\/developers\/wp-content\/uploads\/2023\/03\/Infobip_logo_favicon.png","contentUrl":"https:\/\/www.infobip.com\/developers\/wp-content\/uploads\/2023\/03\/Infobip_logo_favicon.png","width":696,"height":696,"caption":"Infobip Developers Hub"},"image":{"@id":"https:\/\/www.infobip.com\/developers\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/infobip\/","https:\/\/x.com\/InfobipDev","https:\/\/www.youtube.com\/channel\/UCUPSTy53VecI5GIir3J3ZbQ","https:\/\/github.com\/infobip-community"]},{"@type":"Person","@id":"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/40ce9d28d1f1923cbcdcbfedb0cd2508","name":"Patrik Dolovski","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infobip.com\/developers\/#\/schema\/person\/image\/5dfff573013f9e58bf9cccdabefc65f0","url":"https:\/\/secure.gravatar.com\/avatar\/502c23d2e6d3bc874bbd731bd86d1efaab7a99435b388078483f06febf9a8081?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/502c23d2e6d3bc874bbd731bd86d1efaab7a99435b388078483f06febf9a8081?s=96&d=mm&r=g","caption":"Patrik Dolovski"},"description":"Patrik works as an application security engineer at Infobip and is a tinkerer who likes to break stuff.","url":"https:\/\/www.infobip.com\/developers\/blog\/author\/patrik-dolovski"}]}},"_links":{"self":[{"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/posts\/1281","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/users\/18"}],"replies":[{"embeddable":true,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/comments?post=1281"}],"version-history":[{"count":5,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/posts\/1281\/revisions"}],"predecessor-version":[{"id":2525,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/posts\/1281\/revisions\/2525"}],"wp:attachment":[{"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/media?parent=1281"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/categories?post=1281"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/tags?post=1281"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.infobip.com\/developers\/wp-json\/wp\/v2\/coauthors?post=1281"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}