Date: Wed, 07 Apr 2021 17:00:00 GMT
<p>The open web application security project is a recognized entity that helps developers identify critical security vulnerabilities to build secure web applications. In this video I will go through the 10 vulnerabilities and explain each one and give examples and anecdotes from real life examples.</p> <p>0:00 Building Secure Backends</p> <p>2:30 Injection</p> <p>4:50 Broken Authentication</p> <p>6:43 <a href="https://owasp.org/www-project-top-ten/2017/A3_2017-Sensitive_Data_Exposure"><strong>Sensitive Data Exposure</strong></a></p> <p>11:00 XML External Entities (XXE)</p> <p>13:45 Broken Access Control</p> <p>17:00 <a href="https://owasp.org/www-project-top-ten/2017/A6_2017-Security_Misconfiguration"><strong>Security Misconfiguration</strong></a></p> <p><strong>19:00 XSS</strong></p> <p>22:45 <a href="https://owasp.org/www-project-top-ten/2017/A8_2017-Insecure_Deserialization"><strong>Insecure Deserialization</strong></a>.</p> <p>24:48 <a href="https://owasp.org/www-project-top-ten/2017/A9_2017-Using_Components_with_Known_Vulnerabilities"><strong>Using Components with Known Vulnerabilities</strong></a>.</p> <p>26:00 <a href="https://owasp.org/www-project-top-ten/2017/A10_2017-Insufficient_Logging%2526Monitoring"><strong>Insufficient Logging & Monitoring</strong></a>.</p> <p>Resources</p> <p><a href="https://owasp.org/www-project-top-ten/">https://owasp.org/www-project-top-ten/</a></p> <p>Cards</p> <p>2:50 SQL Injection <a href="https://www.youtube.com/watch?v=Azo9tDUtC9s">https://www.youtube.com/watch?v=Azo9tDUtC9s</a></p> <p>4:20 Best practices building REST <a href="https://www.youtube.com/watch?v=6zHWU7zBep0&list=PLQnljOFTspQUybacGRk1b_p13dgI-SmcZ&index=4">https://www.youtube.com/watch?v=6zHWU7zBep0&list=PLQnljOFTspQUybacGRk1b_p13dgI-SmcZ&index=4</a></p> <p>8:30 TLS playlist <a href="http://youtube.com/playlist?list=PLQnljOFTspQW4yHuqp_Opv853-G_wAiH-">youtube.com/playlist?list=PLQnljOFTspQW4yHuqp_Opv853-G_wAiH-</a></p> <p>15:00 HTTP Smuggling https://www.youtube.com/watch?v=PFllH0QccCs</p> <p>19:22 XSS https://www.youtube.com/watch?v=pD6C1-zSxIM</p> <p>25:10 OpenSSL Crash https://youtu.be/aDPQ0_MyRnc</p> <p><br /></p> <p><br /></p> <p><br /></p> <p>Support my work on PayPal</p> <p><a href="https://bit.ly/33ENps4">https://bit.ly/33ENps4</a></p> <p>Become a Member on YouTube</p> <p><a href="https://www.youtube.com/channel/UC_ML5xP23TOWKUcc-oAE_Eg/join">https://www.youtube.com/channel/UC_ML5xP23TOWKUcc-oAE_Eg/join</a></p> <p><a href="https://emojipedia.org/teacher/">🧑🏫</a><strong> </strong>Courses I Teach</p> <p>https://husseinnasser.com/courses</p>