ResourceFul Material: https://classroom.udacity.com/courses/ud459
Reference Material for Web security
Background: See web-background-notes.pdf sandboxing: https://www.howtogeek.com/169139/sandboxes-explained-how-theyre-already-protecting-you-and-how-to-sandbox-any-program/ same origin policy: https://en.wikipedia.org/wiki/Same-origin_policy
Client-Side Attacks (Complex ones): Click Jacking:https://javascript.info/clickjacking Cursor jacking:http://blog.kotowicz.net/2012/01/cursorjacking-again.html Cookie tracking: see cookie video XSS:https://excess-xss.com/ CSRF: https://www.incapsula.com/web-application-security/csrf-cross-site-request-forgery.html (for prevention see https://en.wikipedia.org/wiki/Cross-site_request_forgery)
Server-side Attacks (Complex Ones): SQL Injection: https://www.w3schools.com/sql/sql_injection.asp