Explore the Security Journey Training Library

Security training is most effective when it goes beyond theory. That’s why the Security Journey Training Library offers a variety of content formats designed to help developers learn, practice, and apply secure coding concepts in real-world scenarios.

From quick video lessons to hands-on labs and interactive challenges, each format supports a different stage of the learning journey.

Watch the walkthrough below to explore the different types of content available in the training library.

Short, Engaging Video Lessons

Many learners start with our video lessons, which provide an accessible introduction to key application security concepts.

These lessons follow a podcast-style format that makes security education conversational and approachable. Because developers are busy, most videos are under 10 minutes, making it easy to fit learning into a busy schedule.

Each lesson also includes written content alongside the video, allowing you to:

• Watch the video

• Read the lesson text

• Or use both formats side-by-side

This flexibility allows you to learn in the way that works best for you.

To reinforce what you’ve learned, every lesson concludes with a five-question quiz designed to check comprehension and strengthen retention.

Break/Fix Lessons: Learn Both Sides of the Vulnerability

For a deeper understanding, learners can move into Break/Fix lessons, which provide a guided, hands-on experience.

These labs are structured in two stages:

1. Break: Step into the attacker’s role and exploit a vulnerability to understand how it works in practice.

2. Fix: Shift to the defender perspective and update the insecure code to mitigate the issue.

By experiencing both sides of the vulnerability, learners gain a clearer understanding of how security flaws appear in real applications—and how to properly fix them.

Coding Exercises for Quick Skill Reinforcement

You’ll also find Coding Exercises throughout the training library.

These short, language-specific labs challenge you to remediate vulnerable code directly. They’re often attached to video lessons, giving you an opportunity to immediately apply what you’ve just learned.

Coding exercises are ideal for reinforcing key concepts while keeping the learning experience focused and practical.

Coding Challenges for Real-World Development Practice

For a more advanced experience, learners can take on Coding Challenges.

These challenges feel much closer to real development work. Instead of step-by-step guidance, you’ll work with the full source code of a vulnerable application and solve the problem through investigation and experimentation.

During these challenges, you’ll:

• Perform secure code review

• Implement a fix for the vulnerability

• Validate your solution through testing

This open-ended format helps developers practice applying security principles in realistic scenarios.

Capture the Flag (CTF) Challenges

Finally, the training library includes Capture the Flag (CTF) challenges.

In these scenarios, you return to the attacker role, attempting to compromise a vulnerable web application by applying the techniques you’ve learned throughout the platform.

The goal is to successfully exploit the vulnerability and retrieve a hidden flag, reinforcing both offensive and defensive security knowledge.

Learn in the Format That Works for You

Every developer learns differently, which is why the Security Journey Training Library includes multiple content formats—from short lessons to deep technical challenges.

Whether you prefer watching, reading, coding, or experimenting with real vulnerabilities, there’s a learning experience designed to help you build the skills and confidence to write more secure code every day.