Application security, https, web security, sniffing, cryptography, owasp, vulnerability, threat, exploit, webgoat, samurai WTF, webscarab, w3af, zed proxy, acunetix, burpsuite, secure authentication, parameter modification, sql injection, session ID prediction, session management, cross site scripting, reflected xss, stored xss, application security proxy, xst, csrf