WASEC: Web Application SECurity

Examples of security features (or mishaps) on web applications -- these are mostly examples and tutorials from the WASEC book.

Installation

Add this line to your hostfile:

127.0.0.1 wasec.local sub.wasec.local wasec2.local

Each of the directories in this repo has its own README, so go ahead and explore! A good place to start? Check the clickjacking example.

Most of them can be run with NodeJS -- I am using v10.1.0 but anything above version 9 should work.

Everything has been tested on Google Chrome 65.

Name	Name	Last commit message	Last commit date
Latest commit odino common installation instructions linked everywhere Apr 24, 2020 0b89bb0 · Apr 24, 2020 History 26 Commits
clickjacking	clickjacking	common installation instructions linked everywhere	Apr 24, 2020
cookies	cookies	common installation instructions linked everywhere	Apr 24, 2020
cors	cors	common installation instructions linked everywhere	Apr 24, 2020
hsts	hsts	common installation instructions linked everywhere	Apr 24, 2020
sub-resource-integrity	sub-resource-integrity	common installation instructions linked everywhere	Apr 24, 2020
xss	xss	common installation instructions linked everywhere	Apr 24, 2020
README.md	README.md	Update README.md	Sep 13, 2018
wasec.local-key.pem	wasec.local-key.pem	MOAR cookie stuff	Aug 24, 2018
wasec.local.pem	wasec.local.pem	MOAR cookie stuff	Aug 24, 2018