Join us at APCO 2022 Conference & Expo, August 7-10 in Anaheim, CA.   Learn more.

Back to All Classes
Class Overview

Hackers routinely exploit web applications, especially as more services move to the cloud, despite the fact companies can easily fix most vulnerabilities within web applications before releasing their code to the wild. The PEN300 - OWASP Top 10:2025 Exploitation training class teaches students about the most common web vulnerabilities (OWASP Top 10:2025 Release) in modern web applications, why they often exist, and several methods to test for their existence.

Upon completion of this course, the student will understand how to identify and exploit common vulnerabilities present in modern web applications, and they will gain valuable real-world skills and abilities through a series of challenging hands-on web application exploitation exercises and scenarios. They will understand the underlying issues enabling these vulnerabilities to exist, and the general principles for fixing them in a web application.

Class Outline
  • A01:2025 - Broken Access Control
  • A02:2025 - Security Misconfiguration
  • A03:2025 - Software Supply Chain Failures
  • A04:2025 - Cryptographic Failures
  • A05:2025 - Injection
  • A06:2025 - Insecure Design
  • A07:2025 - Authentication Failures
  • A08:2025 - Software or Data Integrity Failures
  • A09:2025 - Security Logging and Alerting Failures
  • A10:2025 - Mishandling of Exceptional Conditions

Register Now

Upcoming Class Dates

April 20-24, 2026
July 6-10, 2026
October 26-30, 2026

Class Duration/Schedule

5 Days (M-F 8am-5pm ET)
One hour lunch break 12-1pm
Two 15-minute breaks (1 Morning; 1 Afternoon)

Class Cost

$849

What Students Will Receive:

  • Live, Interactive Training: Enjoy multiple days of engaging, instructor-led virtual training sessions, designed to keep you actively involved and fully immersed in the learning experience.
  • Hands-On Virtual Labs: Access to our online training management system, where you'll work on practical, real-world scenarios in hands-on virtual labs.
  • Comprehensive Course Materials: Receive a detailed course workbook in PDF format, providing you with all the key content covered during the training sessions.
  • Additional Resources and Practice Tools: (For CompTIA classes only) Gain access to additional training materials, Performance-Based Questions (PBQs), and certification practice exams to reinforce your learning and prepare for your certification exams.
  • 24/7 Lab Access: Enjoy on-demand access to all training labs taught in class, available anytime, anywhere, for up to one full year - giving you the flexibility to revisit and practice at your own pace.

With these resources, you'll have everything you need to confidently master the material and achieve your training goals!