Bypassing Anti-CSRF with Burp Suite Session Handling

Using Burp Suite to bypass anti-CSRF protections with the built-in Session Handling and Macro recorder.…

eLearnSecurity's Web Application Penetration Tester Review

My thoughts on eLearnSecurity's Web App Penetration Testing course.…

JWT - Reinventing Sessions

JWT advantages and disadvantages with an emphasis on security implementations.…

JSON Web Tokens - J Wut T?

JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object.…

JavaScript Altcoin/Digital Coin Mining

As been noted in the news and other blogs posts over the previous months there has been an upward trend in different web applications utilizing JavaScript to mine for digital currencies.…