Sashank Dara

In this series of liveProjects, you’ll go hands on to secure a potentially vulnerable API from the most common web-based attacks. You’ll step into the role of a developer for Three Cliffs Travel Adventures looking to ensure that your company’s widely used bus ticket booking API is resistant to code-level vulnerabilities identified by the OWASP Top 10 API Security list. Each project in this series focuses on a new type of attack for you to defend against, so you can build a skill set that’s best for your career.

In this series of liveProjects, you’ll set up authentication, authorization, and audit management capabilities for a REST API used by an HR employee leave management application. This application has both web and mobile versions, and handles sensitive employee data. It’s essential that the API is safe and secure. Each liveProject in this series covers a different part of the process, so you can choose the right experience for your needs.

In this series of liveProjects, you’re a software developer at a startup called SimplySpend, which helps companies track employee spending. You are entrusted with building procurement applications by creating REST APIs for web and mobile apps. As the apps contain sensitive financial information, you need to add JWT (JSON Web Token)-based authentication and authorization. You’ll use a JWT mechanism to ensure an API is secure against different types of attacks, while still remaining accessible for clients. Each project in this series covers a different part of token authentication, so you can learn the skills that are most relevant to you.