diff --git a/sectraining.md b/sectraining.md
index 8eb86f5..af2d46e 100644
--- a/sectraining.md
+++ b/sectraining.md
@@ -19,16 +19,11 @@ To prevent non-HTML HTTP responses from embedding data, that might be dangerousl
 JavaScript frameworks (e.g., Angular, React) or server-side templating systems (e.g., Go Templates) have robust built-in protections against Reflected Cross-Site Scripting.
 
 #### Java
-HTML Body	<div>USER-CONTROLLED-DATA</div>	`Encode.forHtml`
-
-HTML Attribute	<input type="text" value="USER-CONTROLLED-DATA">	`Encode.forHtmlAttribute`
-
-URL Parameter	<a href="/search?value=USER-CONTROLLED-DATA">Search</a>	`Encode.forUriComponent`
-
-CSS String	<div style="width: USER-CONTROLLED-DATA;">Selection</div>	`Encode.forCssString`
-
-CSS URL	<div style="background: USER-CONTROLLED-DATA ">	`Encode.forCssUrl`
-
-JavaScript Block	<script>alert("USER-CONTROLLED-DATA")</script>	`Encode.forJavaScriptBlock`
-
-JavaScript Variable	<button onclick="alert('USER-CONTROLLED-DATA');">click me</button>	`Encode.forJavaScriptVariable`
+|---|---|
+|HTML Body	<div>USER-CONTROLLED-DATA</div>	| `Encode.forHtml` |
+|HTML Attribute	<input type="text" value="USER-CONTROLLED-DATA">	`Encode.forHtmlAttribute`|
+|URL Parameter	<a href="/search?value=USER-CONTROLLED-DATA">Search</a>	|`Encode.forUriComponent`|
+|CSS String	<div style="width: USER-CONTROLLED-DATA;">Selection</div>|	`Encode.forCssString`|
+|CSS URL	<div style="background: USER-CONTROLLED-DATA ">	|`Encode.forCssUrl`|
+|JavaScript Block	<script>alert("USER-CONTROLLED-DATA")</script>|	`Encode.forJavaScriptBlock`|
+|JavaScript Variable	<button onclick="alert('USER-CONTROLLED-DATA');">click me</button>	|`Encode.forJavaScriptVariable`|