security

Links

Qualys SSL Labs - Projects / SSL Server Test
ssl certificate security

Schneier on Security: TSA Backscatter X-ray Backlash
tsa bruceschneier security travel

Eric Butler - Software Developer in Seattle WA
firefox wifi sniffing security https ssl

Security Lessons Learned From The Diaspora Launch: MicroISV on a Shoestring
diaspora security

LWPx::ParanoidAgent - search.cpan.org
perl useragent http httpclient security

BBC News - Ten things the Philippines bus siege police got wrong
bbc hostage security counterterrorism rescue

Rely on Declarative Security Features in the Browser - IEBlog - Site Home - MSDN Blogs
ie8 ie9 ie security

Object Capability Model and Facets in Perstore/Pintura | SitePen Blog
javascript objectcapability security caja

MySpace Worm Explanation
xss myspace worm javascript security csrf

Busting frame busting
frame iframe security clickjacking stanford for:iplayer

The Enemy Within - Magazine - The Atlantic
markbowden conficker virus security theatlantic worm

Everything you need to know about cryptography in 1 hour [pdf]
cryptography colinpercival security presentation pdf

Home
virtualisation virtualization os linux security

Exploiting hard filtered SQL Injections « Reiners’ Weblog
security sqlinjection mysql injection

Benlog » Don’t Hash Secrets
cryptography md5 sha1 hash hashing security

Part2 - browsersec - Browser Security Handbook, part 2 - Project Hosting on Google Code
security javascript sameoriginpolicy cookies etag google browser xss csrf

Keyczar
google security cryptography toolkit encryption

What Israel can teach us about security - thestar.com
israel security terrorism airport travel terror intelligence thestar

Why do so many terrorists have engineering degrees? - By Benjamin Popper - Slate Magazine
terrorism security engineering slate

Matt Blaze: Notes from the No Lone Zone
security icbm military war nuclear mad missile silo

The OpenID and OAuth Flow: Playing with UX · Ben Ward
oauth openid ux facebook facebookconnect authentication password security

Cross-domain policy file usage recommendations for Flash Player | Adobe Developer Connection
crossdomain flash crossdomain.xml security csrf

Authenticating REST Requests
security s3 authentication cloud amazon webservices

HMAC - Wikipedia, the free encyclopedia
security hash hmac mac authentication

PHP Tutorials Examples Filtering Data with PHP
php filter filtering security

Billion laughs - Wikipedia, the free encyclopedia
xml wikipedia security

RFC 4086 - Randomness Requirements for Security
rfc security random cryptography

Google Online Security Blog: Reducing XSS by way of Automatic Context-Aware Escaping in Template Systems
google security filtering escaping templating template

AppleInsider | Pwn2Own contest winner: Macs are safer than Windows
security apple osx safari windows vista

http://www.usenix.org/events/hotsec07/tech/full_papers/florencio/florencio.pdf
security password usenix username

Questions for Pwn2Own hacker Charlie Miller | Zero Day | ZDNet.com
security safari osx windows

McSweeney's Internet Tendency: Secure Website Authentification Questions.
security web authentication mcsweeneys

philosecurity » Blog Archive » Interview with an Adware Author
development adware security windows

Ajaxian » Microsoft Live Labs Web Sandbox
javascript security sandbox microsoft

[whatwg] Dealing with UI redress vulnerabilities inherent to the current web
security http clickjacking html

Adobe - Developer Center : Exploring full-screen mode in Flash Player 9
flash fullscreen screen security

sample code to restrospectively protect against csrf attacks
csrf security php

AppleInsider | Apple's secret "Back to My Mac" push behind IPv6
ipv6 mac apple network security router

bunnyhero dev » Scaring people with fullScreen
flash bsod security

The problem(s) with OpenID « The Identity Corner
openid security web

Jeremiah Grossman: Crossdomain.xml Invites Cross-site Mayhem
crossdomain crossdomainxml security flash

Automatic Patch-Based Exploit Generation
security patch windows exploit

UW CSE and ICSI Web Integrity Checker
modified http tripwire injection security proxy

Photo Matt » SecurityFocus SQL Injection Bogus
wordpress security

VPN Evolved: Gain Secure Remote Access with LogMeIn Hamachi
vpn security

TidBITS Safe Computing: Should Mac Users Run Antivirus Software?
osx virus security tidbits

Dr Nic » Zero Sign On - 1 better or Infinitely better than Single Sign On?
security openid login authentication ssl certificate

shimmer
security network ssh

Coding Horror: Has CAPTCHA Been "Broken"?
captcha spam security research

Yahoo! 360° - Douglas Crockford's The Department of Style - No Script
douglascrockford javascript security

Matasano Chargen » A Roundup Of Leopard Security Features
security leopard osx

Web Application Security - Joe Walker's Blog
security web http javascript ajax xss csrf

Wish-It-Was Two-Factor - Worse Than Failure
password security wtf

Matasano Chargen » Enough With The Rainbow Tables: What You Need To Know About Secure Password Schemes
password security hash cryptography

LM hash - Wikipedia, the free encyclopedia
security microsoft password hash windows

Security and Risk Management Strategies Blog: WHAT IS OPENID FOR?
security openid

The Identity Corner » The problem(s) with OpenID
openid security

Cross-site request forgery - Wikipedia, the free encyclopedia
security webanalytics

Schneier.com
tsa security terrorism airport bruceschneier

Implementation Limits For SQLite
security sqlite

ocr research team
ocr captcha security

IEBlog : IE7 in Windows Vista: Configuring Your View Source Editor
security ie vista

Information Security News: Hackers Shortcut Hotmail Password Reset Protections
hotmail security

SQL Injection Cheat Sheet
sql injection security database web

oreilly.com -- Online Catalog: Building Scalable Web Sites
php security xss sqlinjection

Weak security in our daily lives@Everything2.com
debruijn mathematics security car key code everything2

LinuxDevCenter.com: How Shellcodes Work
hacks security exploit shellcode

XSS (Cross Site Scripting) Cheat sheet: Esp: for filter evasion - by RSnake
xss javascript development security

Tsunami 'hacker' conviction worries experts - ZDNet UK News
tsunami danielcuthbert dec law internet security

The New Yorker: Fact
crime ddos security network

Common ISP Mistakes
isp mistakes network security

watermarking
watermark fingerprint security

RSA: SecurID Attack Was Phishing Via an Excel Spreadsheet | threatpost
rsa security securid

Iranian hackers obtain fraudulent HTTPS certificates: How close to a Web security meltdown did we get? | Electronic Frontier Foundation
eff security ssl certificate https iran

Black ops: how HBGary wrote backdoors for the government
arstechnica security hbgary backdoor government

kippo - Project Hosting on Google Code
honeypot security ssh

How the Comodo certificate fraud calls CA trust into question
ssl arstechnica ca security

The Invisible Things Lab's blog: The Linux Security Circus: On GUI isolation
security x xwindows linux gui

Tracking Device Teardown - iFixit
security fbi wired ifixit gps teardown privacy

Re: stable Linux 2.6.25.10
linustorvalds security linux openbsd

How To Safely Store A Password | codahale.com
password security php

Certificate Validation Example: Facebook « Mike's Lookout
ssl http security facebook certificate ca

ImperialViolet - Overclocking SSL
ssl tls performance google http cryptography security

SQL Injection Pocket Reference - Google Docs
sql security injection sqlinjection

Low Cost, High Performance, Strong Security: Pick Any Three
ssl https security performance filetype:pdf media:document

WebAppSec/Secure Coding Guidelines - MozillaWiki
security mozilla guidelines standard csrf password

perlsec - search.cpan.org
dos random hash security perl