Knowledge where it counts

There are too many Web Application Security testing and secure development classes that waste time by discussing multiple tools that serve the same purpose, or make Web Application Security concepts feel like "magic" by not addressing the practical application of theory. Using the tools they use and the techniques they've learned from years of Web Application Security consulting and software development, Practical Security Services provides training that focuses on blending theory with reality to form an optimal learning experience. Training also provides Practical Security Services an opportunity to share a passion for Web Application Security and software development with individuals who make a real difference in the state of security for the applications that impact our daily lives.


Training Options


Practical Security Services schedules public classes all over the world. While historically public classes have only taken place in the United States, Practical Security Services is willing an able to travel abroad. Open enrollment classes are made available through several arrangements:

  • Hosted by Practical Security Services directly.
  • Hosted by Practical Security Services in association with a host company.
  • Provided through partnerships with conferences and events.

Pricing for public classes hosted by Practical Security Services use the same pricing model as private training (see the "Private" section for details) with the exception of the inclusion of travel. However, prices may vary when training is provided through partnerships where the partner controls the pricing, or when travel costs are excessive (i.e. major city centers or international). These changes would be reflected in the individual ticket prices.

For classes hosted by Practical Security Services, there is a minimum class size of twelve students that must be met two weeks prior to public training events or the event may be canceled. In the event of a cancellation, paid participants will have the option of a full refund or credit toward a future training opportunity. Credits apply to training organized by Practical Security Services LLC only. Otherwise, all purchases are final and refunds may be issued on a case by case basis at 97% of the full value to cover processing fees.

For companies looking to host a public class, Practical Security Services manages all of the financial logistics and the host company is only responsible for providing the training space, so there is minimal overhead for the host company. Practical Security Services also provides incentives to the host company. Please contact us for details.


Practical Security Services charges a flat rate per person per day for private training, regardless of the course. Rate may vary based on location, travel duration, etc. There is also a minimum private class size of ten students. Travel is billed as actual for private classes in addition to the class rate. If you are unable to meet the minimum class size, there is the option to pay the equivalent fee of ten students, or host a public class and permit non-employees to register in order to meet the minimum requirement (see the "Public" section for details).


  • "I just completed my first paid pen test as an after hours gig. Thanks to your class, I had a solid methodology to follow. I went down the list and it went better than I expected. I found stored XSS, IDOR, Session Fixation, insecure JWT storage, CSRF and more. I would have never been able to do this without you. Thank you so much. I can’t wait to take the class again!!"

    - Joe S. (PWAPT WorkshopCon, 2019)
  • "This is the most beneficial, real-world applicable course I have ever attended on web application penetration testing. In three days, Tim walked us through his expert methodology on assessing web applications and provided insight on the most recent vulnerabilities that are currently being found and how to test for them. Excellent course."

    - Steve D. (PWAPT Raleigh, 2019)
  • "I've been in IT for 24 years and have taken dozens and dozens of training classes. I've left most of those classes feeling like the value of the class for the cost wasn't worth it. That was completely the opposite for your class. I left wondering why it was so cheap. Without a doubt it was some of the best training I've received in my career."

    - Jeremy Archer (PWAPT Eau Claire, 2018)
  • "I've taken several different trainings/certifications to include: OSCP, eMAPT, ePPT, Sans (GCFE and GMOB); your training and method of instruction blew these away. You've given me the gift of knowledge and I greatly appreciate it!"

    - DJ Phishes (PWAPT Eau Claire, 2018)
  • "Thank you for an amazing class! Truly inspirational. I'm probably one of the newest from your Springfield class to the security world, but you were able to teach and present all of the information in a way that was not only at a level that could be easily understood, but was engaging and fun!"

    - Blaise Lacktis (PWAPT Springfield, 2019)

Stay In Touch and Be Notified
Service Announcements + Upcoming Seminars and Classes