• Online, Self-Paced

Django is a Python-based web framework design for fast, easy application creation. Popular apps like Instagram and Clubhouse use Django, but are you prepared to exploit and mitigate the high-risk Django flaw (CVE-2022-34265) that leaves applications vulnerable to SQL injection attacks? Put your pentest skills to the test in our course!

Learning Objectives

By the end of this course, you should be able to:
- Define the vulnerability, describe its root cause, and communicate its significance to key organizational stakeholders.
- Exploit this vulnerability using publicly available exploit code.
- Execute various mitigation tactics to reduce risk.

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.