Web Security Training

Navigating the web security landscape

Navigating the web security landscape

trainingsessions – Resources

Common API Security Pitfalls

Blog The slides from my Devoxx Belgium 2017 talk about common API security pitfalls in REST APIs. Read More ›

digest – Article

The websec digest #23

Blog The websec digest gives you a brief overview of significant incidents, technologies, and upcoming events. The biggest story of this edition is the KRACK attacks on WPA2. They caused quite a stir, even before the details were out. Read More ›

digest – Article

The websec digest #22

Blog The websec digest gives you a brief overview of significant incidents, technologies, and upcoming events. In this edition, we illustrate the importance of security with two real-world attacks. Both attacks abuse well-known vulnerabilities and have a major impact. Read More ›

digest – Article

The websec digest #21

Blog The websec digest gives you a brief overview of significant incidents, technologies, and upcoming events. The headline this edition is another deserialization vulnerability in the Struts framework. As you can imagine, it's causing quite a ruckus. Read More ›

trainingsessions – Resources

What do you mean, Front End Security?

Blog The slides from my talk about front end security at the Front-end Forward meetup in Rotterdam. It gives an overview of what client-side security is about these days. Read More ›