STH.Developer Training


Security Awareness For Developers
STH.Developer provides the most up-to-date pinpoint software security awareness training for everyone involved in the software development process, when they need it most and from the comfort of their own desks.
 

Securing Web Application Technologies (SWAT) Checklist

The SWAT Checklist provides and easy to reference set of best practices that raise awareness and help development teams create more secure applications. It's a first step toward building a base of security knowledge around web application security.
 

Developer Courses

Take our top-rated web application security or secure coding courses live from the comfort of your home or office. SANS vLive! offers virtual live training for DEV522, DEV541, and DEV544 courses.
 

Developer Courses OnDemand

Learn about web application security and secure coding whenever and wherever you want from your computer or iPad.
 
1 2 3 4
Mission Statement

SANS Software Security seeks to ingrain security into the minds of every developer in the world by providing world-class educational resources to design, develop, procure, deploy, and manage secure software.

Resources

We offer developers, architects, testers, managers, and security professionals an opportunity to learn, discuss, and share current developments in the field. We provide information on application security research, training, certification, and events. Application Security Survey
Secure Programming Tips

Course Overview

The majority of security vulnerabilities are found in the application layer. Our courses teach you how to develop defensible applications that are resistant to attack. Course Brochure

Certification

Our software security certifications provide assurance that an individual has practical knowledge and skills in secure coding (GSSP), web application security (GWEB), and web application penetration testing (GWAPT).


OnDemand Training - Training
Latest Blog Posts

Continuous Integration: Live Static Analysis with Roslyn
October 21, 2016 - 7:06 PM

Dev-Sec.io Automated Hardening Framework
June 29, 2016 - 10:03 PM

2016 State of Application Security: Skills, Configurations, and Components [...]
May 06, 2016 - 2:48 PM

View More »

Latest Tweets @sansappsec

Register for the #SANSCloudSummit on 1/17 to hear @emjohn20 [...]
December 30, 2016 - 5:20 PM

Only 3 weeks until the SANS Cloud Security Summit and #DEV53 [...]
December 27, 2016 - 3:20 PM

Apple announces that mandatory iOS ATS requirement has been [...]
December 22, 2016 - 5:04 PM

Latest Papers

2016 State of Application Security: Skills, Configurations and Components
By Johannes Ullrich, PhD

Protection from the Inside: Application Security Methodologies Compared
By Jacob Williams

Web Application Firewalls
By Jason Pubal

View More »

"The course used real code with simple scenarios illustrating a full attack scenario and how to fix the vulnerabilities."
- Jeffrey Bell, Lockheed Martin

"Very practical. Something every developer should attend."
- Chris Yokley, Baldwin County Commission

"Wow, I had no idea, and I've been doing this for close to a decade."
- Michael Knopf, Abacus Technology