Everyday security testing: A practical guide to getting started

Learn how to build security into your day-to-day testing!

Everyday security testing: A practical guide to getting started image
Like Bookmark Add to collection

TL;DR: We’re about to launch a brand-new hands-on course for Professional Members: Everyday security testing: A practical guide to getting started. Created by Richard Adams, this course shows you how to incorporate simple, powerful security checks into your everyday testing. Registration of interest is now open, and the course will be available very soon!

Who is it for?

This course is for anyone who wants to add security testing to their everyday work. Whether you're an exploratory tester, automation engineer, or developer, you’ll learn how to spot risks without needing prior security experience.

So, what?

Security flaws are among the most damaging issues in software today, but you don’t need to be a specialist to start finding them. This course helps testers take a practical, lightweight approach. You’ll learn to spot risks early, test for vulnerabilities hands-on, and build confidence in your ability to add security thinking to your testing.

In the course, you’ll:

Get comfortable with security testing terminology.

  • Perform simple but powerful techniques like URL manipulation and bypassing UI validation.
  • Learn how to test for XSS, injection, and SQL injection vulnerabilities.
  • Practice using tools such as Postman, Chrome DevTools, and ZAP.
  • Explore threat modelling step by step, including Data Flow Diagrams and STRIDE.
  • Bring it all you've learnt together in a final hands-on challenge.

All 11 lessons are packed with activities, including hands-on testing, guided demonstrations, and reflections to help you apply your learning directly to your own work.

What’s more!

  • Practical Activities: You’ll test against safe demo sites designed to surface common vulnerabilities, giving you real-world practice without the risk.
  • Threat Modelling in Action: Go beyond the basics and learn to run your own threat modelling session with your team.
  • Community Reflection: Share your experiences and insights in others in the MoTaverse!

👉 Register your interest today and be one of the first to start Everyday security testing: A practical guide to getting started when it launches later this month.

Sarah Deery
Sarah Deery
Learning and Development Lead
She/Her
My main aim is to help software testers turn their vast knowledge and skills into bite-sized chunks suitable for the community to digest.
Richard Adams
Richard Adams
Passionate about quality & testing. Looking for new roles where I have the opportunity to lead and share my love for quality.
Comments
Judy Mosley
Judy Mosley
So excited for this course!!
30 minutes
Sign in to comment
More news
01
Advanced prompting for testers
02
First request to test suite: 30 days to API testing confidence
03
We're investing in the future of quality engineering, will you be a part of it?
04
Introducing: Software Testing and Quality Engineering Salary Database
05
MoT Monthly - June 2025
06
MoT Meetups: June / July 2025
07
Announcing SQEC! MoT's Software Quality Engineering Certificate
MoT Professional Membership image

MoT Professional Membership

For the advancement of software testing and quality engineering
Explore MoT
Brighton Meetup image

Brighton Meetup

Thu, 2 Oct
Post-TestBash Brighton Meetup
MoT Software Testing Essentials Certificate image
MoT Software Testing Essentials Certificate
Boost your career in software testing with the MoT Software Testing Essentials Certificate. Learn essential skills, from basic testing techniques to advanced risk analysis, crafted by industry experts.
This Week in Testing image
This Week in Testing
Debrief the week in Testing via a community radio show hosted by Simon Tomes and members of the community
Subscribe to our newsletter
We'll keep you up to date on all the testing trends.