Notes Index for Web App Sec
- Folks want to be Javascript Ninjas so here's a deep-dive
- Crash Course on DOM manipulation
- How to host your web apps
- Live demo
- OAuth
- AJAX
- NodeJs and Express
- Hosting and Serverless Functions with Firebase
- Model View Controller intro for web apps
- Live Demo, Building a Lobby system
- The importance of Single Page Apps
- Intro to React... be careful
- PROJECT DAY! Pivoting to security, the instructions for turning in Project 1, and the setup for Project 2.
- XSS: Cross-Site Scripting Level 0
- PHP: The Ancient One (these notes are currently stubbed because medical emergency)
- Sessions, Cookies, LocalStorage and baby Session Hijacking
- Role-Based Access Control in Firebase
- SQL the spreadsheet of databases
- Passwords, Hashes, Stretching, Salting
- DVWA, Juice-Shop (baby Docker and Digital Ocean)
- Security Project: Video Write-Up OWASP Bingo!
- Cross Site Request Forgery
- REST APIs: philosophy, design, in practice
- Crypto for the Web
- File Upload Exploit
- XXE
- Web Sockets
- Some live CTF challenges
- Hybrid apps
- Getting to know AWS
- Parting Gifts: Tech skills to learn, Career Advice, Life Advice, Actions Steps