Overview What You Will Learn Curriculum Instructor

Course Overview

Many developers, at the start of their career, know how to write code but not how to avoid security flaws in their code and end up writing poor quality code with security loopholes in them such as SQL Injections, etc. This will in turn lead to a codebase that has a lot of security issues and thus poses a great risk to your organization’s assets as these issues can easily be exploited by hackers to steal data and wreak havoc.

This course will teach you about the various types of attack strategies that hackers utilize to penetrate a product, how to avoid security flaws in your code with ruby on rails as an example, build security solutions from scratch such as advanced rate limiters and guide you in mastering the art of writing secure code.

The concepts you learn in this course will help you throughout your journey as a developer to help write secure code and develop a solid product for your organization that is resilient in terms of security.

Towards the end of the course, you will be confident in your ability to write secure code, avoid common security pitfalls and strengthen your standing security posture.

What You Will Learn

  • The overall objective and goal of the course is to make you a better programmer and gain extensive knowledge of security vulnerabilities.
  • Helping you to write more secure code and deliver high quality code which is both resilient and secure.
  • By the end of the course
  • you will be a master of writing secure code.
  • You will have knowledge of the various security issues and flaws that exist.
  • You will learn how to develop solutions that counter these security issues
  • how to test applications for security issues and how to fix them
  • how to build security solutions such as rate limiters and image filters from scratch and in general
  • help you become a better developer.

Program Curriculum

  • What is Ruby? What is Rails?
  • Why Ruby on Rails?
  • $7 Million Cybersecurity Scholarship by EC-Council
  • Chapter 1 Quiz

  • SQL Injection
  • Cross-Site Scripting (XSS)
  • Header Injection
  • Command, CSS and AJAX Injection
  • Chapter 2 Quiz

  • What is CSRF?
  • CSRF in Rails
  • Countermeasures
  • What is Clickjacking?
  • Clickjacking in Rails & Countermeasures
  • Chapter 3 Quiz

  • What are Headers?
  • Default Headers in Rails
  • CSPs
  • Chapter 4 Quiz

  • What is Rate Limiting?
  • Rate Limiting Tactics and Strategies
  • Safe Listing and Blacklisting
  • Tracking and Throttling
  • Advanced Concepts of Rate Limiting using Rack Attack
  • Combining it all Together
  • Chapter 5 Quiz

  • File Uploads - Basics
  • Scanning Files for Viruses using Clamav
  • Image Filter - Blocking Images
  • Image Filter - Blocking based on Content Type
  • Image Filter - Fixing Metadata Leaks
  • Why and How to Test using Brakeman
  • Analysing Results of Brakeman Report
  • Chapter 6 Quiz

  • What is covered so far? What should you learn next?
  • Goodbye!
Load more modules

Instructor

Riyaz Rafi Ahmed

Riyaz Rafi Ahmed has intense experience in Information Security, VAPT, AWS - Security, Ruby on Rails - ProgrammingSecurity (building security solutions from scratch), Blue-teaming, and Security Awareness Training. He has completed over 13 professional courses in the domain of security from various universities such as the University System of Georgia and University of California San Diego and has given multiple talks on topics related to digital privacy and security online in various colleges and national organizations attended by students and subject matter experts alike. Having spent close to 2 years in the domain and given multiple talks on various topics, Riyaz understands how developers start out as he himself is one and is the perfect trainer for this course on understanding security with the example of ruby on rails.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

$ 499.00
Billed annually or $59.00 billed monthly
Get Started Now
Start your 7-day trial for $1

What is included

  • 700+ Premium Short Courses
  • 50+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

$ 599.00
Billed annually or $69.00 billed monthly
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 800+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month
  • 3 Official EC-Council Essentials Certifications¹ (retails at $897!)
    Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

  • Introduction to Raspberry Pi

    Introduction to Raspberry Pi

    Short Course

    Introduction to Raspberry Pi

    Software Development

    Learn How to Create Software and Hardware Projects using Rasp...

    $49.99

    Beginner

    2 hr 0 m

  • Hands-on React Native

    Hands-on React Native

    Short Course

    Hands-on React Native

    Software Development

    Learn to build modern, beautiful & powerful native iOS an...

    $49.99

    Beginner

    6 hr 32 m

  • Learn Python Programming with 100 Practicals

    Learn Python Programming with 100 Practicals

    Short Course

    Learn Python Programming with 100 Practicals

    Software Development

    Learn Python Programming from scratch.

    $69.99

    Beginner

    5 hr 30 m

  • Game Development with C# and Unity – Reinforce Your C# Codes

    Game Development with C# and Unity – Reinforce Your C# Codes

    Short Course

    Game Development with C# and Unity – Reinforce Your C# Codes

    Software Development

    Learn to write code that is not just functional, but clean, m...

    $49.99

    Advanced

    4 hr 18 m

  • React.JS Crash Course: The Complete Course for Beginners

    React.JS Crash Course: The Complete Course for Beginners

    Short Course

    React.JS Crash Course: The Complete Course for Beginners

    Software Development

    Create web apps that are robust, quick, user-friendly, and re...

    $59.99

    Beginner

    2 hr 0 m

  • Optimizing and Securing Ansible Playbooks

    Optimizing and Securing Ansible Playbooks

    Short Course

    Optimizing and Securing Ansible Playbooks

    Software Development

    Efficiently Automating Container and System Management with S...

    $99.99

    Intermediate

    5 hr 0 m

  • OAuth, OpenID, and SAML Crash Course Security for Web and Mobile

    OAuth, OpenID, and SAML Crash Course Security for Web and Mobile

    Short Course

    OAuth, OpenID, and SAML Crash Course Security for Web and Mobile

    Software Development

    Learn how OAuth2, OpenID, and SAML work as open standards for...

    $49.99

    Advanced

    1 hr 0 m

  • Spring Core Framework with Spring Tool Suite

    Spring Core Framework with Spring Tool Suite

    Short Course

    Spring Core Framework with Spring Tool Suite

    Software Development

    The hands-on learning experience of Spring Core Framework

    $49.99

    Intermediate

    1 hr 37 m

1 8