WebSockets allow the client or server to create a ‘full-duplex’ communication channel, allowing the client and server to truly communicate asynchronously.

List of Bug Bounty programs

Teergrube für HTTP

Open Source Security Guide. Contribute to mikeroyal/Open-Source-Security-Guide development by creating an account on GitHub.

Principles of web security. The fundamentals and state-of-the-art in web security. Attacks and countermeasures. Topics include: the browser security model, web app vulnerabilities, injection, denial-of-service, TLS attacks, privacy, fingerprinting, same-origin policy, cross site scripting, authentication, JavaScript security, emerging threats, defense-in-depth, and techniques for writing secure code. Course projects include writing security exploits, defending insecure web apps, and implementing emerging web standards.

Welcome to the page where you will find each hacking trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

OWASP Top 10:2021 (DRAFT)

The Web Security Academy is a free online training center for web application security, brought to you by PortSwigger. Create an account to get started.

The OWASP Top 10 is a well known index of web app security vulnerabilities which is used every day by security professionals, but it doesn't currently take into account how often those vulnerabilities are used by hackers. We dug through security breach records to see which vulnerabilities are exploited most frequently.