Web Security Training

Navigating the web security landscape

Navigating the web security landscape

trainingsessions – Resources

Boosting the Security of your Angular Application

Blog The slides from my talk about security in Angular applications. It covers Angular's built-in XSS protection, and points out how you can use Subresource Integrity, Content Security Policy and Sandboxing to further improve the security of your application. Read More ›

trainingsessions – Resources

Demystifying Spring Security headers by example

Blog I talked about Spring Security, and the great job it does enabling various security headers by default. But do you know what they actually mean? Find out in this talk. Read More ›

digest – Article

The websec digest #11

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. This edition covers two noteworthy stories that dwarf other news: the SHA1 collision produced by Google, and the data leakage over at Cloudflare. Read More ›

trainingsessions – Resources

Why Traditional Web Security Technologies no Longer Suffice to Keep You Safe

Blog The slides from an overview presentation of how the Web, and Web security, have changed in the last few years. This talk has been at the OWASP Belgium Chapter meeting in February 2017. Get in touch if you want to invite me to talk for your company or tech group! Read More ›

trainingsessions – Resources

What do you mean, Front End Security?

Blog The slides from my talk about front end security at the JSBe meetup. It gives an overview of what client-side security is about these days. Read More ›