Skip to content

Instantly share code, notes, and snippets.

@hawkins

hawkins/webz.md

Created October 15, 2017 07:50
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save hawkins/8eae824fea71b90a1980dae7c2e88382 to your computer and use it in GitHub Desktop.
Save hawkins/8eae824fea71b90a1980dae7c2e88382 to your computer and use it in GitHub Desktop.
Download ZIP
CTF Introduction to Web Security Resources
Raw
webz.md

Web Security Introductions

This is a list of a few resources a friendly hacker at MSU shared with me during my junior year. They're catered toward experienced web developers looking to learn a little bit more about web security (ala me). I thought a friend on Twitter could use them, so I'm sharing them for anyone else who may be in that position :)

Resources

Begin quote from friend's DMs

This is what helped me get me feet wet with web security problems: http://overthewire.org/wargames/natas/

Really, really good wiki on just about every web security problem. If you want ideas of more things to look at, check this out: https://www.owasp.org/index.php/OWASP_Testing_Guide_v4_Table_of_Contents

Truthfully, I haven't read this book. I've heard its good, but its also long :/ https://www.amazon.com/Web-Application-Hackers-Handbook-Exploiting/dp/1118026470

This is just a fun site that has XSS brainteasers. Its down right now but should be back up: http://escape.alf.nu/

@hawkins
Copy link
Author

hawkins commented Oct 15, 2017

For my own records, this was from 10/8/16

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment