LEARNING PATH: Advanced Application Security

Secrets Management with Hashicorp Vault

Hashicorp Vault is one of the most advanced and widely used tools for secrets management, securely storing and controlling access to tokens, passwords and encryption keys. Vault integrates with AWS, Microsoft Azure and other cloud platforms, making it possible to develop web applications with secure data protection mechanisms. 

We’ll take a largely hands-on, practical approach to this course, starting with an introduction to Hashicorp Vault and its API. Using lab exercises, you’ll learn how to deploy Vault in production, manage static and dynamic secrets with Vault, and data encryption with Vault Transit Secrets Engine. 

We’ll also explore access control management with Vault, including Secure Token Generation, PKI Secrets Interface and more.including Secure Token Generation, PKI Secrets Interface and more. Our final lesson is an in-depth look at seamlessly integrating Hashicorp Vault with your web applications. 

All our training material, labs and video content are specially designed by AppSec Engineer for this course. This is a distillation of years of security testing experience, knowledge, and original research across our entire team. We’ve put a strong focus on real-world techniques, challenges and scenarios so you’ll be able to directly use what you’ve learned in a modern development environment.

Secrets management with hashicorp vault
Proficiency Intermediate
Audience Application Security
Course Duration​ 4
Lessons​ 17
Cloud Labs​ 2



Cloud Security Expert

Course duration




Cloud Labs


    • Intro to Secrets Management – A Case for a structured approach to managing secrets
    • Secrets vs Sensitive Information – A Distinction and varied Threat Model
    • Secret Management Fails: 
      • Secret Management in GitOps fails
      • Real-world incidents that were caused extensively by bad secrets management
    • Centralization of Secrets
    • Access Control Management to Secrets
    • Dynamic Secrets
    • Encryption at rest and in transit
    • Auditability of secrets management
    • Introduction to HashiCorp Vault and its API
    • Deploying Vault in Prod
    • Managing Secrets with Vault => Static Secrets
    • Encryption, Key Rotation and Rewrapping with Vault Transit Secrets Engine
    • Dynamic Secrets with Vault => Using Dynamic Secrets for short-term leases for databases
    • Authentication and Access Control Management to Vault
    • Secure Token Generation with Vault
    • PKI Secrets Interface of Vault => Run your own CA on Vault
    • Vault Audit Capabilities
    • Vault Seal/Unseal concepts
  • Walkthrough of Vault CLI
  • Integrating Vault with our Web App
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking "Accept" you consent to the use of All the cookies