Recently found an excellent series on web application security (WASec) from odino.org. The series covers topics from DNS resolution and http exchange to CSP header and X-XSS-Protection. Very detailed and well laid with truck loads of knowledge. Give them a visit and brush up your WASec knowledge.
