Web Security Training

Navigating the web security landscape

Navigating the web security landscape

digest – Article

The websec digest #11

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. This edition covers two noteworthy stories that dwarf other news: the SHA1 collision produced by Google, and the data leakage over at Cloudflare. Read More ›

trainingsessions – Resources

Why Traditional Web Security Technologies no Longer Suffice to Keep You Safe

Blog The slides from an overview presentation of how the Web, and Web security, have changed in the last few years. This talk has been at the OWASP Belgium Chapter meeting in February 2017. Get in touch if you want to invite me to talk for your company or tech group! Read More ›

trainingsessions – Resources

What do you mean, Front End Security?

Blog The slides from my talk about front end security at the JSBe meetup. It gives an overview of what client-side security is about these days. Read More ›

digest – Article

The websec digest #10

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. This is the tenth edition already, and the headline is a cross-browser fingerprinting technique, which can be used to track you, even if you switch browsers. Read More ›

trainingsessions – Resources

Keeping Untrusted Code out of Your Angular Application

Blog The slides from my talk about untrusted code in Angular applications. It covers Subresource Integrity and the iframe sandbox attribute. Read More ›