The cake is done! And by that, I mean I completed my quest into application security. This one will be

Finally, a lab blog post! First up: PortSwigger Academy. Even though I’m going to walk through a recent lab, aka operation, I completed, what I really want to highlight is not the what, it’s the how.

I wanted to dive right into a blog post about appsec labs, CTFs, and all the other fun hands-on training and practice out there, but then I realized that isn’t how this journey went. There was, what I consider, a crucial step that first took place–establishing foundational knowledge.

Coming from a non-developer background, I wanted to give a little insight into how my journey started in AppSec. I didn’t just happen to fall into it, and it didn’t come without its discouraging moments, but that doesn’t mean stop trying.