Skills › Cybersecurity

Security Basics

Understand OWASP top 10, authentication patterns, and basic encryption.

0%
Confidence · no data yet
Sign in to track

After this skill you can…

  • Fix OWASP top 10 vulnerabilities
  • Implement JWT and OAuth 2.0 correctly
  • Hash passwords securely with bcrypt/argon2

Watch (10 videos)

HackTheBox - Analytics
IppSec · beginner hands-on
→ Exploit Metabase using nmap→ Perform manual injection on the /setup/validate endpoint
AWS Security Agent (Preview) Overview - Frontier Agent for Proactive AppSec | Amazon Web Services
Amazon Web Services · advanced hands-on
→ Implement proactive security measures→ Use AWS Security Agent for application security
Is This Website LEAKING?
John Hammond · beginner hands-on
→ Scan a website for vulnerabilities→ Identify security weaknesses
HackTheBox - Unattended
IppSec · intermediate hands-on
→ Identify SQL injection vulnerabilities→ Exploit Nginx misconfiguration
HackTheBox Zipping
IppSec · beginner hands-on
→ Exploit PHP vulnerabilities→ Bypass security checks with PHAR wrapper
Install Nessus for Free and scan for Vulnerabilities (New Way)
David Bombal · beginner hands-on
→ Install Nessus→ Scan for vulnerabilities
Python Quick Tip: Hiding Passwords and Secret Keys in Environment Variables (Windows)
Corey Schafer · beginner hands-on
→ Hide sensitive information in environment variables→ Secure Python applications with environment variables
HackTheBox - Surveillance
IppSec · beginner hands-on
→ Identify and exploit web application vulnerabilities→ Use nmap for reconnaissance
HackTheBox - Code
IppSec · beginner hands-on
→ Exploit Python code execution vulnerabilities→ Use filter evasion techniques
Server-Side Template Injection w/ Flask | Flaskcards [34] picoCTF 2018
John Hammond · intermediate hands-on
→ Exploit server-side template injection vulnerabilities→ Use Flask to demonstrate template injection attacks

Read (10 articles)

📄
JWT Auth in Flask Python
Dev.to · Graham Morby · 2022-05-14
📄
Secure your Spring Boot Rest API with Keycloak
Dev.to · Gauthier Cassany · 2022-06-27
📄
Criando Controllers seguros do Mass Assignment Cheat Sheet
Dev.to · Jordi Henrique Silva · 2022-07-25
📄
Build a Passwordless Authentication in Node.js on Redis
Dev.to · Michael Owolabi · 2022-09-30
📄
Basic Kotlin/Java + Spring app with GitHub OAuth 2.0
Dev.to · Neha Srivastava · 2023-04-15
📄
Securing Your Flask Application: Hashing Passwords Tutorial
Dev.to · Akanni Modupe Adegoke · 2023-05-26
📄
Best Practices for open banking API
Dev.to · Mohamed Ibrahim · 2023-12-10
📄
A Passwordless Future: Passkeys for Java Developers
Dev.to · Deepu K Sasidharan · 2024-01-02