Lots of web hacking can be done directly from the browser. Throw in a proxy like Burp plus the browser’s developer tools window and you’ve got a nearly complete toolkit.
But nearly complete means there’s still room for improvement. We’ll talk about the tools to keep on hand, setting up practice targets, participating in bug bounties, and more resources to help you learn along the way.
For tips on labs beyond just appsec, be sure to check out the Security Weekly webcast on “Do It Yourself: Building a Security Lab At Home” at https://securityweekly.com/webcasts/do-it-yourself-building-a-security-lab-at-home/
Visit https://www.securityweekly.com/asw for all the latest episodes!
The DIY AppSec Lab
John Kinsella – Co-founder & CTO at Cysense
John Kinsella is the Chief Architect for Accurics
Mike Shema – Security Partner at Square
Mike Shema is a Security Partner at Square.
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
We have a couple webcasts coming up soon. First, join us March 2nd to learn five things you can do to catch more bad guys! Then join us March 10th for an intro to KQL queries! To register for these webcasts visit https://securityweekly.com/webcasts. Don’t forget to check out our library of on-demand webcasts & technical trainings at https://securityweekly.com/ondemand.