SecAppDev 2025 workshop details
Secure Coding Workshop
Learning goal: Attendees will learn to build secure APIs by preventing injection attacks, managing third-party risks, OAuth2 basics, securing React integrations, and handling file uploads safely. They will also explore AI-assisted code generation.
Schedule TBD
Abstract
This hands-on workshop teaches developers the principles of secure coding, focusing on real-world attack scenarios and defense strategies. Participants will learn to identify and mitigate vulnerabilities such as injection flaws, XSS, authentication weaknesses, and insecure dependencies. Using AI code generators and security tools, attendees will strengthen their ability to write robust, secure applications.
Ideal for developers looking to enhance their security mindset and build software that withstands modern threats.
Content overview
- API Security Basics
- Injection Attacks
- Third-Party Library Security
- AI for Secure Code Creation
- OAuth2/OIDC Introduction
- Secure React
- File Upload Security
Content level
Deep-dive
Target audience
Anyone wanting to learn about secure coding
Prerequisites
Basic software development for the web
Technical requirements
Just a laptop with a browser
Join us for SecAppDev. You will not regret it!
Grab your seat now
Join us for SecAppDev. You will not regret it!
Grab your seat nowOther workshops
Hands-on deep-dive into frontend security
One-day workshop by Philippe De Ryck
Modern web applications rely heavily on frontend code, making browser security mechanisms crucial for protecting users and data. This hands-on workshop takes a deep dive into advanced frontend security for Angular / React / Vue applications.
Participants will explore real-world attack scenarios and implement defenses through guided exercises. Designed for developers and security professionals, this workshop blends academic depth with practical application, equipping attendees with the skills to secure modern frontends effectively.
Learning goal: Understand and apply state-of-the-art security mechanisms to protect modern frontends from real-world threats.