Web Security Training

Navigating the web security landscape

Navigating the web security landscape

digest – Article

The websec digest #6

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. In this edition, the headline goes to the nifty JavaScript attack that used steganography to hide malware code in images, to bypass scanning software. Read More ›

trainingsessions – Resources

Boosting the Security of your Angular 2 Application

Blog The slides from my talk about security in Angular 2 applications. It covers Angular's built-in XSS protection, a few patterns you might want to avoid, and some advice on how you can leverage the power of Content Security Policy in your applications. Read More ›

trainingsessions – Resources

Why Traditional Web Security Technologies no Longer Suffice to Keep You Safe

Blog The slides from an overview presentation of how the Web, and Web security, have changed in the last few years. This talk has been given at various public and private venues. Get in touch if you want to invite me to your company or tech group! Read More ›

digest – Article

The websec digest #5

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. In this edition, the headline goes to the breach of 400 million accounts of AdultFriendFinder and associated sites. Read More ›

digest – Article

The websec digest #4

Blog The websec digest gives you a filtered overview of noteworthy incidents, interesting technologies and upcoming events. In this edition, the headline goes to the £2.5 million hack of the British banking giant Tesco. Read More ›