Web Application Exploits and Defenses Logo

Web Application Exploits and Defenses

0
Free
Resources
Visit Website

A codelab by Bruce Leban, Mugdha Bendre, and Parisa Tabriz that demonstrates how web application vulnerabilities can be exploited and how to defend against these attacks. The codelab covers various topics such as Cross-Site Scripting (XSS), Cross-Site Request Forgery (XSRF), Client-State Manipulation, Denial of Service, Code Execution, Configuration Vulnerabilities, AJAX vulnerabilities, and more.

FEATURES

ALTERNATIVES

Cyber Warfare Range LLC Logo
Cyber Warfare Range LLC

A non-profit organization providing live-fire cyber warfare ranges for training and up-skilling cybersecurity professionals.

Free
Resources
Ramblings from Jessie: Setting the Record Straight: containers vs. Zones vs. Jails vs. VMs Logo
Ramblings from Jessie: Setting the Record Straight: containers vs. Zones vs. Jails vs. VMs

A blog post discussing the differences between Solaris Zones, BSD Jails, VMs, and containers, with the author arguing that containers are not a real thing.

Free
Resources
Compilation of SHODAN Filters Logo
Compilation of SHODAN Filters

A comprehensive list of search filters for the SHODAN search engine.

Free
Resources
LFI-Labs Logo
LFI-Labs

A set of PHP scripts for practicing LFI, RFI, and CMD injection vulnerabilities.

Free
Resources
FARA Logo
FARA

FARA is a repository of purposefully erroneous Yara rules for training security analysts.

Free
Resources
Metasploit Cheat Sheet Logo
Metasploit Cheat Sheet

A comprehensive guide to using Metasploit, including searching for modules, specifying exploits and payloads, and using auxiliary modules.

Free
Resources
Crown Point Solutions - Awareness Training Logo
Crown Point Solutions - Awareness Training

Online IT Security and Privacy Awareness training courses to help companies meet compliance requirements and reduce cybersecurity risks.

Commercial
Resources
Beacon Logo
Beacon

Cybersecurity training platform with courses, certifications, and study guides.

Free
Resources

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security