  |
Cgisecurity.com - http://www.cgisecurity.com/
This site is designed to help user to learn about what kinds of security risks exist and how to prevent them from happening. |
| |
Web Spoofing - http://www.cs.princeton.edu/sip/WebSpoofing/
Full text of a paper discussing an 'attack' that threatens both privacy and data integrity. Written by Edward W. Felten, Dirk Balfanz, Drew Dean, and Dan S. Wallach. Available in various formats including PDF and Postscript. |
| |
Hacking Exposed: Web Applications - http://www.webhackingexposed.com/
Book that covers how to hack web applications, and how to secure against the attacks detailed. Author profiles, links to tools referenced in the book and reviews. |
| |
CIAC: Unix NCSA httpd Vulnerability - http://www.ciac.org/ciac/bulletins/f-11.shtml
An advisory detailing a vulnerability that has been discovered in the NCSA WWW server software (httpd). |
| |
World Wide Web (in)Security - http://www.swcp.com/~mccurley/danger/danger.html
Demonstrations of security risks and advice for safe use of a web browser. |
| |
Total Simplicity - http://www.totalsimplicity.com
Total Simplicity is a full on technical company providing hosting, custom programming, security, and online stores. |
| |
Northfell - http://www.northfell.com/
Article on website hacking covering footprinting, IP scanning and an example IIS hack. Also has computer security weblog and an overview of BS7799. |
| |
Are Secure Internet Transactions Really Secure? - http://www.jsweb.net/paper.htm
This paper describes how many small business claim to be offering a secure order form, when in fact, they really are not. The paper shows how the insecurity occurs, and offers a few solutions to the problem. |
 |
W3Schools.com: Web Security - http://www.w3schools.com/site/site_security.asp
Covers basic privacy issues. |
| |
Client Side Trojan - http://www.zope.org/Members/jim/ZopeSecurity/ClientSideTrojan
By clicking on maliciously formed HTML tags users can unknowingly perform undesirable actions. |