workshop-desenvolvimento-seguro
Ferramentas (após abrir o link, clique em Open in Colab):
Links: https://github.com/brinhosa/workshop-desenvolvimento-seguro
https://vsaq-demo.withgoogle.com/vsaq.html?qpath=questionnaires/webapp.json
https://owasp.org/www-project-api-security/
https://owasp.org/www-project-docker-top-10/
https://owasp.org/www-project-secure-coding-practices-quick-reference-guide/migrated_content
https://owasp.org/www-pdf-archive/OWASP_SCP_Quick_Reference_Guide_v2.pdf
https://owasp.org/www-pdf-archive/OWASP_SCP_v1.3_pt-BR.pdf
https://portswigger.net/web-security
https://docs.microsoft.com/pt-br/windows/security/threat-protection/msft-security-dev-lifecycle
https://www.microsoft.com/en-us/securityengineering/sdl/practices
https://nullsweep.com/integrating-security-with-agile-development/
https://snyk.io/learn/secure-sdlc/
https://owasp.org/www-project-web-security-testing-guide/
https://owasp.org/www-project-web-security-testing-guide/assets/archive/OWASP_Testing_Guide_v4.pdf
https://www.ibm.com/br-pt/security/data-breach
XSS poliglota
https://github.com/0xsobky/HackVault/wiki/Unleashing-an-Ultimate-XSS-Polyglot
XSS Armazenado
http://testphp.vulnweb.com/guestbook.php
SQLi
https://raw.githubusercontent.com/p4r4n0rm4l/dummy-SQL-injection-site/master/sql.php
Ambientes de Teste:
https://github.com/WebGoat/WebGoat
https://github.com/WebGoat/WebGoat/releases