Learning

Courses#

• OWASP - Cheat Sheet Series
• Mozilla - MDN
• HTML Standard
• RFC 2616 - HTTP
• PortSwigger - WebSecurity Academy

Articles#

• PortSwigger - Research
• YesWeHack - Talent Development
• Synacktiv - Publications
• SonarSource - Security blog
• Seebug - Web Security

Vulnerability Feeds#

• Github Advisory Database (GHSA)
• HackerOne - Disclosed reports
• Huntr - Hacktivity
• CVE Half-Day Watcher

Challenges#

• PortSwigger - WebSecurity Academy
• HackTheBox - Web challenges
• Root-Me - Server/Client side
• CTFTime - Upcomming CTFs
• HeroCTF - Challenges & Write-ups of past editions
• Flag4jobs - Challenges on real-world use cases

Books#

• JavaScript for hackers - Gareth Heyes