OWASP'ın ilk 10'u
https://owasp.org/www-project-top-ten/ →
https://owasp.org/www-project-top-ten/
Portswigger'ın (Burp'la ünlü) ücretsiz çevrimiçi web güvenliği kursları
https://portswigger.net/web-security →
https://portswigger.net/web-security
Tehdit avcılığı için simüle edilmiş web günlükleri oluşturun
https://github.com/punk-security/pwnspoof →
https://github.com/punk-security/pwnspoof
HTTP Güvenlik Başlıkları ve yaptıkları şey
https://nullsweep.com/http-security-headers-a-complete-guide/ →
https://nullsweep.com/http-security-headers-a-complete-guide/
NCC'nin "Finansal Yönelimli Web Uygulamalarındaki Genel Güvenlik Sorunları" kılavuzu
https://www.nccgroup.com/globalassets/our-research/uk/images/common_security_issues_in_financially-orientated_web.pdf.pdf → YAYINDAN KALDIRILDI
https://www.nccgroup.com/globalassets/our-research/uk/images/common_security_issues_in_financially-orientated_web.pdf.pdf YAYINDAN KALDIRILDI
Web Uygulama Güvenliği için faydalı yüklerin ve atlamaların listesi
https://github.com/swisskyrepo/PayloadsAllTheThings →
https://github.com/swisskyrepo/PayloadsAllTheThings
GÖNYE CAPEC
https://capec.mitre.org/index.html →
https://capec.mitre.org/index.html
SQL
SQL cinayetinin gizemiyle SQL öğrenin
https://mystery.knightlab.com/ →
https://mystery.knightlab.com/
SQL sorgu oluşturucu
SQL Enjeksiyonu
https://pentestmonkey.net/cheat-sheet/sql-injection/mysql-sql-injection-cheat-sheet →
https://pentestmonkey.net/cheat-sheet/sql-injection/mysql-sql-injection-cheat-sheet
https://portswigger.net/web-security/sql-injection/cheat-sheet →
https://portswigger.net/web-security/sql-injection/cheat-sheet
https://websec.ca/sql-injection-knowledge-base/ →
https://websec.ca/sql-injection-knowledge-base/
XSS
XSS verileri
https://github.com/payloadbox/xss-payload-list → YAYINDAN KALDIRILDI
https://github.com/payloadbox/xss-payload-list YAYINDAN KALDIRILDI