* (SQL) Injection Lab - Play and learn about SQL injection
* Broken Authentication Lab - Brute force authentication using 100 of the most used passwords
* Sensitive Exposure Lab - Learn why you need to salt hashes by using rainbow tables / sites like Crack Station to lookup plain text values for unsalted hashes.
* Broken Access Control Lab - See what happens if you forget to authorize users properly and users start guessing URL parameters
* Cross Site Scripting (XSS) Lab - Experience how a JWT Token can be stolen if you allow arbitrary JavaScript to be run on a page
* Convenient scripts to brute force entry, create seeds, and create SHA1 hashes
We train people into junior developer jobs and we help companies train their juniors/mediors with monthly classes, mentoring, and coaching. This is growing fast.
We are looking for on site teachers and coaches who want to be available at least 1 day per month as a freelancer.
Other than that, we are looking for a part/full time (min. 3d/week) teacher/developer, preferably with excellent JS skills: Node, React, Redux, Angular, etc.
As a teacher, you are responsible for 1 or more days of teaching + content in our courses.
As a developer, you are responsible for building and maintaining our content, planning, and evaluation infrastructure.
You will work with our core team (7 people) and freelance teaching/coaching staff (34 people). We do mostly classroom training and (remote) coaching/mentoring. We organise Meetups about teaching and learning code to spread the word, share our knowledge, and demystify code for the masses.
Amsterdam, Netherlands ONSITE VISA | New York City, United States ONSITE
## What is Impraise
Impraise is a web-based and mobile solution for actionable, timely feedback at work. Currently, performance reviews are carried out once or twice a year, which doesn’t support employees’ continuous learning.
Impraise turns performance reviews into a fast and easy process by enabling users to give and request feedback whenever it is most helpful. With Impraise, employees can better analyze their strengths and weaknesses, track their progress and pursue their personal and professional goals all year long.
## Who we are
We are a team of international hackers, business hustlers and creative brains backed by the world's most renown startup accelerator, Y Combinator. We are on a mission to change the way people can learn and develop themselves at work. We care about beautiful products and creating things we are proud of and would love to work with people that think similar. Join our international team with people from all over the globe.
Springest is the largest source for learning in Europe. You can find everything you need to learn (or progress) in your professional life. We have a strong product focus in which everything revolves around the users of our Dutch, German, UK, and US sites. Next to that, more and more organisations are using our SaaS tools to stimulate and manage learning for their employees.
Working at Springest
To strengthen our development team more, we are looking for a senior Ruby developer who can work independently. We don’t have managers at Springest, but processes, and we feel that individuals taking responsibility is very important. At Springest, you will work in a product team and in close collaboration with product owners, marketing, and sales colleagues. You are also a member of our development team where we discuss architecture, infrastructure, and keep a close watch on security and performance.
Your New Colleagues
At Springest you will work with around twenty colleagues who all are very skilled at what they do and almost all of them have a healthy dose of nerd skills that we really value. As a developer you fulfil an important role here that all your colleagues value and appreciate. Springeteers are a happy bunch and we often get together outside work to enjoy free time as well. Our office is a cosy place where anything goes and that we all take good care of together.
We are all active organisers and members of a lot of Meetups and other forms of knowledge exchange (learning is our hobby!) and we participate quite actively in the Amsterdam startup ecosystem. In addition to that we get a lot of attention for Springest being the poster boy of how HOLACRACY and GTD can work for an organisation, which in turn is due to our organisational structure without managers and other unnecessary overhead.
Our Data and Stack
At Springest you will work on our Ruby on Rails application on a daily basis. The app runs on AWS in Docker containers. You can read more about that on our blog.
We serve over 100 different SSL endpoints, among which are our APIs, Admin backend for learning providers, and of course our public websites. How we do that will soon be published on our blog.
At this time, we have over 150,000 courses by 5,000 providers in our Postgres database. Our users trust us with over 50,000 reviews already. Our exciting job is to maintain this ever scaling dataset.
It should not surprise you that our search engine is a core feature, for which we use Elasticsearch. We provide over 6,000 subjects in more than 150 categories with courses through this engine. We do personal recommendations for our users with it, taking their location, start dates, and many other factors into account that are important when choosing the right form of education.
Pgpool-II is a powerful piece of software that allows people to connection pool a Postgres cluster, and is even capable of managing a full multi master cluster. The docs are, however, so badly written and incomplete that it's way too hard to set up for most people. A shame, because it's great stuff.
* (SQL) Injection Lab - Play and learn about SQL injection * Broken Authentication Lab - Brute force authentication using 100 of the most used passwords * Sensitive Exposure Lab - Learn why you need to salt hashes by using rainbow tables / sites like Crack Station to lookup plain text values for unsalted hashes. * Broken Access Control Lab - See what happens if you forget to authorize users properly and users start guessing URL parameters * Cross Site Scripting (XSS) Lab - Experience how a JWT Token can be stolen if you allow arbitrary JavaScript to be run on a page * Convenient scripts to brute force entry, create seeds, and create SHA1 hashes