Okay, I've spent a while doing security but very little of it focused on web apps. Like, almost none. As a sys admin, I'm more concerned about hardening my OS and learning fun things like buffer overflows and interesting network attacks.
That said, I find myself in a position now where I need to learn a lot more about web apps and learn it fast. I'm going to assume I'm starting from the bottom here and will let you tag along as I explore this area.
There isn't really any content for this post other than to let y'all know I'll be talking like a noob for the next few weeks.
First adventure: finding an XSS by accident