XSS Game :: Learn Cross-Site Scripting, Bug-Test Google Apps, Step 3: Profit

Here’s another Google Appspot pen-testing practice site, this one focused on XSS (Cross-Site Scripting). Oh, it’s so fun to have sites where you can rampage like Hannibal’s elephants without getting condemned to death by gladiator! “In this training program, you will learn to find and exploit XSS bugs. You’ll use this knowledge to confuse and …

OWASP Juice Shop :: Get Your Web Hacking Jollies Here [ Hacker Night School ]

OWASP Juice Shop: Hmm, let’s see what we can hack here. This isn’t for beginners, but this realistic e-commerce site lets you root around and find things to break without the local gendarmerie knocking at your door. It’s pretty, it’s well-designed and well-coded, and it keys to the OWASP Top 10 Web Vulnerabilities (which you’d …

Hacker Highschool: TV Interview on Fox New Mexico

This is post 4 of 4 in the series “[ Hacker Highschool ]” This series of posts covers my years as Project Manager for the Hacker Highschool v 2 Rewrite Project, 2012-2016. Hacker Highschool: Foreword and Copyright Statement My Years With Hacker Highschool: In The Beginning Hacker Highschool: Download Uncut Lessons Hacker Highschool: TV Interview …

Teaching Security Certifications in New Mexico

Glenn at work

I’ve been trying for some seven years to get the University of New Mexico to let me start offering hard-core cyber-security (i.e. hacking) certification courses, without even a whiff of success until recently. The Marketing Department and Custom Training division surveyed our captive audience, which is pretty sizable: Sandia National Labs, Los Alamos National Labs, …