Web Security Training

Navigating the web security landscape

Navigating the web security landscape

trainingsessions – Resources

Are we losing the battle for a secure web?

Blog The slides from my guest lecture about web security at UCLL in LEuven. It covers the security landscape in general, and goes into depth into HTTP Strict Transport Security, one of the recent browser-based security policies. Read More ›

digest – Article

The websec digest #6

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. In this edition, the headline goes to the nifty JavaScript attack that used steganography to hide malware code in images, to bypass scanning software. Read More ›

trainingsessions – Resources

Boosting the Security of your Angular 2 Application

Blog The slides from my talk about security in Angular 2 applications. It covers Angular's built-in XSS protection, a few patterns you might want to avoid, and some advice on how you can leverage the power of Content Security Policy in your applications. Read More ›

trainingsessions – Resources

Why Traditional Web Security Technologies no Longer Suffice to Keep You Safe

Blog The slides from an overview presentation of how the Web, and Web security, have changed in the last few years. This talk has been given at various public and private venues. Get in touch if you want to invite me to your company or tech group! Read More ›

digest – Article

The websec digest #5

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. In this edition, the headline goes to the breach of 400 million accounts of AdultFriendFinder and associated sites. Read More ›