Now that we have covered the basics of web security, keep all these principles and points in mind when developing web apps and securing existing web apps, and always be curious to learn more about what it takes to be secure.
- Web Dojo, which has many vulnerable applications and their docs included: Web Security Dojo
- Google Gruyere, by Bruce Leban, Mugdha Bendre, and Parisa Tabriz, another vulnerable web application, which you can do online without installing a VM: Web Application Exploits and Defenses
OWASP Broken Web Applications Project
You need to sign up for Treehouse in order to download course files.Sign up