JustAppSec

Welcome to JustAppSec Training

A hands-on, lifecycle-first journey through application security. Six pathways follow the software lifecycle — from the security mindset through writing secure code, building resilient systems, shipping safely, running in production, and breaking your own apps before someone else does.

6 pathways
37 lessons

The journey

  1. 1

    Think

    Build a security mindset: threats, boundaries, and intent.(5 lessons)

  2. 2

    Code

    Write secure code: injection, auth, validation, and defence in depth.(8 lessons)

  3. 3

    Build

    Design systems that defend themselves: frameworks, APIs, and architecture.(6 lessons)

  4. 4

    Ship

    Secure the pipeline: CI/CD, dependencies, containers, and provenance.(6 lessons)

  5. 5

    Run

    Detect and respond: logging, monitoring, incidents, and compliance.(6 lessons)

  6. 6

    Break

    Find what others miss: testing, review, and offensive techniques.(6 lessons)

Start the first lesson

This training content is AI-assisted and reviewed by our team, but issues may be missed and best practices evolve rapidly. Send corrections to [email protected].