# Index < START HERE ## Welcome {% hint style="info" %} This site is still a work in progress! There will be gaps and there's of course a lot more to come so make sure to check back in soon! {% endhint %} > My goal is to provide a somewhat living and up-to-date handbook for Web Application Hacking. In particular the checklists are designed not just to give you things to look for, but also spark ideas, and creative ways to find vulnerabilities. This is a curated repository of my notes and experience over many years of testing web applications. I've stripped out the sensitive information and made it more accessible for those who are learning about web application security. I hope you find it useful in your journey. Throughout this site, I try to promote ideas over specific payloads to help you solve problems and find security weaknesses that other testers or scanners may have missed. Please feel free to connect with me! You can find me on LinkedIn, or Twitch. {% embed url="" %} Please feel free to connect and message me if you have questions or feedback. {% endembed %} {% embed url="" %} In a moment of weakness I signed up to Twitter. {% endembed %} {% embed url="" %} I stream here from time to time :) {% endembed %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://appsecexplained.gitbook.io/appsecexplained/index-less-than-start-here.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.