Content

Below is various content I have either created or contributed to:

Projects

SecGen creates vulnerable virtual machines so students can learn security penetration testing techniques.
bXSS is a simple Blind XSS application adapted from https://cure53.de/m
AngularJS Security Rules For ESLint
MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts

Talks

2019

BrightTalk - Online - OWASP Top 10 For JavaScript Developers
WaffleJS - San Francisco - Blind Cross-Site-Scripting
Day Of Shecurity - San Francisco - OWASP Top 10 For JavaScript Developers
Day Of Shecurity - San Francisco - Manual JavaScript Analysis is a Bug
Allstars - Amsterdam - Manual JavaScript Analysis is a Bug
Global AppSec - Tel Aviv - OWASP Top 10 For JavaScript Developers
OWASP - Portland - OWASP Top 10 For JavaScript Developers
BrightTalk - Online - Reviewing Modern JavaScript Applications
OWASP - San Francisco - Reviewing Modern JavaScript Applications

2018

Bsides - Leeds - Performing JavaScript Static Analysis
AngularSF - San Francisco - Dangerous Design Patterns In One Line

2017

OWASP - London - So you thought you were safe using AngularJS.. Think again!
FluentConf - San Jose - So you thought you were safe using AngularJS.. Think again!

2016

Leeds Beckett University - Leeds - Breaking Into Security
SteelCon - Sheffield - Reviewing AngularJS 1.x Applications
OWASP - London - Lightning Talk - Jacks Tool Demo

External Blog Posts

What are the top Black Friday cyber security concerns of 2017
An escape room called the ‘AngularJS sandbox’
AngularJS 1.6: Life outside the sandbox
AngularJS is secure by default, right? Not so fast.
AngularJS security series part 1: Angular $http service

ardern.io ~ © 2018