Notes Index for Web App Sec

• Folks want to be Javascript Ninjas so here's a deep-dive
• Crash Course on DOM manipulation
• How to host your web apps
• Live demo
• OAuth
• AJAX
• NodeJs and Express
• Hosting and Serverless Functions with Firebase
• Model View Controller intro for web apps
• Live Demo, Building a Lobby system
• The importance of Single Page Apps
• Intro to React... be careful
• PROJECT DAY! Pivoting to security, the instructions for turning in Project 1, and the setup for Project 2.
• XSS: Cross-Site Scripting Level 0
• PHP: The Ancient One (these notes are currently stubbed because medical emergency)
• Sessions, Cookies, LocalStorage and baby Session Hijacking
• Role-Based Access Control in Firebase
• SQL the spreadsheet of databases
• Passwords, Hashes, Stretching, Salting
• DVWA, Juice-Shop (baby Docker and Digital Ocean)
• Security Project: Video Write-Up OWASP Bingo!
• Cross Site Request Forgery
• REST APIs: philosophy, design, in practice
• Crypto for the Web
• File Upload Exploit
• XXE
• Web Sockets
• Some live CTF challenges
• Hybrid apps
• Getting to know AWS
• Parting Gifts: Tech skills to learn, Career Advice, Life Advice, Actions Steps