PortSwigger Web Security Academy Journey

Hello! I will be focusing on application security for a while, starting with the PortSwigger Web Security Academy Tutorials. I’ll complement this with reading The Web Application Hacker’s Handbook, 2nd Edition by Dafydd Stuttard and Marcus Pinto. Although it’s a bit outdated (published in 2011), it is still highly recommended in the community as a valuable resource.

Finally, I leave you with this funny post I came across on r/ProgrammerHumor. I still remember the first time in 2007 when I was reading about SQL Injections as part of my PHP journey. The documentation said to simply wrap your query within mysql_real_escape_string() to mitigate all SQLi risks :); Sadly this attack vector remains relevant in 2023.