Guidelines

Build a strong, defensive foundation with secure coding guidelines

Learn about vulnerabilities and security concepts in a readable format with code snippets in a specific language or framework.

Targeted learning - Tailored to each language

Dive deep into secure coding concepts to learn defensive security techniques and build a strong foundational knowledge before graduating to more challenging, interactive content. Guidelines review general mitigation strategies to future-proof secure coding knowledge and go in-depth with current best practices for any selected language.

Lock down your code with defensive knowledge

Increase your skills in defensive mitigation strategies with clear examples and code snippets in a specific language or framework.

Mitigate vulnerabilities

Resolve software vulnerabilities through secure coding techniques.

Get relevant examples

Learn how to mitigate vulnerable code through code snippets and examples.

Upskill over time

Deepen your knowledge with contextual, self-paced learning.
Guidelines in action

Contextual, self-guided learning

Get in-dept explanations

Understand how to recognize the vulnerability and the best-practices to mitigate it.

Learn in common languages

Get in-depth coverage of the OWASP Top 10 vulnerabilities for popular web languages, as well as Pseudocode snippets.

Go at your own pace

Learn the ins and outs of a vulnerability with additional context and self-paced learning.

Get started

Supported Frameworks

Over 60 languages & frameworks covered

Our constantly-expanding content library has over 60 languages and frameworks and covers over 150 types of security vulnerabilities, in more than 8000 coding challenges

C++:Basic
Python: Flask
Java: Enterprise Edition (JSP)
PHP Symfony
JavaScript: Angular.io (2+)
Java: Enterprise Edition (API)
C# (.NET): Web API
C++:Embed
Ruby: Rails
C# (.NET): Web Forms
C# (.NET): Basic
Java Spring
C:Basic
Node.js API
Java Servlets
Python
Docker
Terraform
SAP:ABAP
Java: Android SDK
Kotlin Spring API
Swift
PHP Basic
COBOL
Oracle PL/SQL
Typescript
Kotlin: Android SDK
C# (.NET): Core
Java
Salesforce Apex
Vue.js
Kubernetes
Powershell
Rust
RPG:Basic
Java: Spring API
Node.js (Express)
Perl: Dancer2
Bash
Scala: Play
C# (.NET): MVC
Ansible
React Native
Java: Enterprise Edition (JSF)
Javascript
C:Embed
Python Web API
Pseudocode
Pseudocode: Mobile
Cloudformation
GO: Web API
Objective-C: iOS SDK
GO
PHP Laravel
Python: Django
JavaScript: React
Java Struts
See Languages

Highlighted resource

Resource hub

Embrace developer-driven secure coding

Contact us today and make software security an intrinsic part of your development process.