In this video, we will install and configure OWASP ZAP.

This video demonstrates server-side request forgery.

This video demonstrates insecure logging.

This video talks about software and data integrity failures.

This video explains identification and authentication failures.

This video explores using components with known vulnerabilities.

This video talks about security misconfiguration.

This video explains the XML external entities.

This video explains Injection.

This video explains what sensitive data exposure is and talks about cryptographic failures.

This video talks about Broken authentication.

This video explains API security.

This video is about using Fiddler to tamper with parameters in JuiceShop.

This video provides an introduction to proxy tools and their purpose.

This video explains defense in-depth and its purpose.

This video demonstrates the different attackers that threaten software and systems. You will look at more foundational definitions.

This video provides an introduction to the SANS Top 25.

This video is a high-level walkthrough of the OWASP Top 10 and other OWASP resources.

WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security videos. In this video, we will do a brief demo to get you started on using WebGoat.

In this video, we will continue defining terms and start talking about security goals.

In this video, we will cover the initial terms and definitions related to application security.

In this video, we will lay the groundwork for what an SDLC looks like.

Make a pinhole projector to safely use the solar eclipse with simple materials.

A story of how I wrote my latest piece. Using Curiosity and other interests to inform your writing.