The Coding Slim Jim

Ahh.. who gave the code-monkey a wrench?

Monday, July 5, 2010

OWASP - Web site security documents of worth

The owasp site is a great resource for web site security guide lines

http://www.owasp.org/

http://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet

http://code.google.com/p/owasp-development-guide/wiki/WebAppSecDesignGuide_D6
Posted by Ashley Smart at 10:38 PM
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Labels: security, website hacks and attack vectors

No comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments (Atom)

Total Pageviews

Social

Blog Archive

  • ►  2017 (2)
    • ►  August (1)
    • ►  March (1)
  • ►  2016 (20)
    • ►  October (3)
    • ►  September (2)
    • ►  August (4)
    • ►  July (9)
    • ►  June (1)
    • ►  May (1)
  • ►  2015 (2)
    • ►  December (1)
    • ►  April (1)
  • ►  2014 (5)
    • ►  November (1)
    • ►  July (2)
    • ►  April (2)
  • ►  2013 (8)
    • ►  October (2)
    • ►  September (4)
    • ►  June (1)
    • ►  January (1)
  • ►  2012 (26)
    • ►  December (1)
    • ►  November (5)
    • ►  October (2)
    • ►  September (3)
    • ►  July (1)
    • ►  June (1)
    • ►  May (3)
    • ►  April (9)
    • ►  January (1)
  • ►  2011 (46)
    • ►  November (5)
    • ►  October (4)
    • ►  September (1)
    • ►  August (2)
    • ►  July (6)
    • ►  June (1)
    • ►  May (12)
    • ►  April (2)
    • ►  March (5)
    • ►  February (5)
    • ►  January (3)
  • ▼  2010 (153)
    • ►  December (5)
    • ►  November (7)
    • ►  October (15)
    • ►  September (13)
    • ▼  July (20)
      • SSL using website -- Setting up the server
      • SSL using website - Generating an SSL cert for apa...
      • rails - Forcing a certain encoding type for the page
      • tcpdump to debug the an encoding problem
      • fixing "svn: Malformed file" and other broken svn ...
      • rails - using truncate from a the lib dir ie a module
      • A quick javascript console web page.
      • /proc/: The linux kernels live state
      • crontab for every X minutes excluding a period Y h...
      • mass replacement of text in files
      • Free OCR that is worth it
      • rails testing - undefined method `request='
      • rails - DEFAULT_RAILS_LOGGER not working in libs
      • OWASP - Web site security documents of worth
      • Script injection attacks to be aware of
      • Interview puzzle questions
      • cleaning up locales in ubuntu
      • Rails DateTime converting into your time zone
      • Confirming and ip/email/web sites owner
      • Rails - 422 error code
    • ►  June (65)
    • ►  May (15)
    • ►  April (13)
  • ►  2009 (9)
    • ►  August (7)
    • ►  July (1)
    • ►  May (1)

Popular Posts

  • Executing sql from rails console
    All ways useful... ActiveRecord::Base.connection.execute("SELECT * FROM users") ActiveRecord::Base.connection.execute("sele...
  • Reservoir Sampling - K samples from an infinite stream
    Question; You have a stream of infinite queries (ie Google searches). Describe how you would find K uniformly distributed samples and write...
  • quick wake on lan script with netcat
    An WOL packet is simply the 6 bytes of FF followed by the 6 byte MAC address repeated 16 times. So to script it first generate the wake pa...
  • Iphone web server with php
    I have an old iphone 3G that I upgraded to a 4G. Now I use it as my lowpower server. To do this you first need to jailbreak it and of course...
  • pthread: basic threading - creating, waiting for and ending threads
    Here is basic example program demonstrating threads using the posfix threads library. The key points are; Threads are created with a call...
  • crontab for every X minutes excluding a period Y hours
    Crontab isnt really hard its just limited. To execute for every 5 minutes except between 1:00 to 2:00 */5 0-1,2-23 * * * /bin/hello.sh I...
  • Async usage of futures and promises in ASIO
    One of the new c++11 additions with great potential is futures and promises. However im a heavy asio based async programmer. Most exiting ex...
  • Creating iomanip for a class - the easy way
    Now creating custom io manipulator for your classes can be damn annoying.. The trick to building them is to install and manage a handler for...
  • A php sqlite to json converter page
    Next I build basically a quick converter page to convert an sqlite query result into json function jsonOutput($query) { #json convert ...
  • Recursive Templates -- poly dimensional associative arrays
    Another step to the poly dimensional iterators are the generic ploy dimensional arrays. These come in handy. The Trick to realize is that th...
Powered by Blogger.