Locking Down Your Website Scripts with CSP, Hashes, Nonces and Report URI

added by DotNetKicks
11/14/2017 3:27:29 PM

2 Kicks, 290 Views

I run a workshop titled Hack Yourself First in which people usually repsonsbile for building web apps get to try their hand at breaking them. As it turns out, breaking websites is a heap of fun (with the obvious caveats) and people really get into the exercises. The first one