Abhay Bhargav
  • Home
  • About Abhay
Sign in Subscribe

Content-Security-Policy: An Introduction

  • Abhay Bhargav

Abhay Bhargav

13 May 2019

Content-Security-Policy (CSP) is a major control to protect against Cross-Site Scripting Attacks. This video talks about both offensive and defensive perspectives of Content-Security-Policy implementations for your application

Code for the example app: https://github.com/we45/csp-flask

Code for the presentation: https://github.com/we45/AppSecEngineerCSPIntro

Sign up for more like this.

Enter your email
Subscribe
Last Week in AppSec - Aug 30 -  Sep 7

Last Week in AppSec - Aug 30 - Sep 7

Interesting stories and blogs from the Last week in AppSec * iHide Tool from TrustedSec => https://www.trustedsec.com/blog/introducing-ihide-a-new-jailbreak-detection-bypass-tool/ * Container Isolation Techniques => https://blog.aquasec.com/container-isolation-techniques * AWS OIDC with SPIFFE => https://developer.squareup.com/blog/aws-oidc-authentication-with-spiffe/ * AWS SDK Official Swift Release => https://aws.amazon.
07 Sep 2021 1 min read
Last week in AppSec - Aug 23 - 29 2021

Last week in AppSec - Aug 23 - 29 2021

In this segment of "Last week in AppSec", I explore some interesting news and content from the world of AppSec, Cloud Security, Kubernetes Security and more... Here's what I am talking about in this issue: ChaosDB => https://chaosdb.wiz.io/ Mark Dowd’s Keynote in
31 Aug 2021 1 min read
Better OKRs for Security through Effective Threat Modeling
Featured

Better OKRs for Security through Effective Threat Modeling

If you've read any management article, book or interview recently, its unlikely that you've not come across the term "OKR". The term (and practice) has become as entrenched with management culture, as its founding company, Intel, has with microchips. OKR is a goal-setting methodology
03 Feb 2021 5 min read
Abhay Bhargav © 2025
Powered by Ghost