Attacking Web Apps
An insight into security assessment
More on SOP, CORS, XSS
Tutorial 7 Notes
JSON with Padding
JSONP
Same and Cross Origin Policy
Cross Origin Policy, SOP
Cross Site Scripting
XSS
Server Side Security
SSRF, XXE, Injections, LFI, Vulns
Flag Alert
Time Based Attacks
SQLi - SQL Injection
Insecure Direct Object Reference
IDOR
Role-Based Access Control
Cross-Site Request Forgery
CSRF
User Security
Authentication, Authorisation and Sessions
Industry Insight: Stopping Hackers
KB Proxy
Automatically forward local-only sites through a tunnel endpoint