Burp Web Security Academy

securityorc

The BurpSuite team, including the author of The Web Application Hacker's Handbook, just launched a resource for learning web security attacks and defenses, and it's free. They also have labs for the content. Right now only 4 vulnerabilities available, but they're working on adding more.

https://portswigger.net/web-security

Enjoy!

Infosec_Sam

That's pretty in-depth for free material - thanks for sharing! Have you given any of the labs a spin? I'll probably end up checking them out this weekend.

Johnhe0414

Thanks for the cool resource - I will need to check this out!

securityorc

Didn't have time for the labs yet, only started one to see its format and it looked like a simulated web application. I have high expectations for this resource, coming from the author of the web hacker handbook and he said on Twitter that he won't do a new book, but will work on the academy instead.

DZA_

Thank you for the find OP!

beads

Nice complement to the book work that I did last year.

b/eads