Web Application Security
A few people asked for slides and links from the security talk from The Ajax Experience last week:
General Links:
- OWASP: Open Web App Security Project
- Security Resources from the OpenAjax Alliance Wiki
- Mozilla on Same-Origin Policy
XSS:
- Introductions from: Wikipedia and Apache
- Cheat Sheet: Long list of XSS vectors from RSnake
- Explanation of DOM Based XSS
- Explanation of Samy is my Hero worm
- Fairly old FAQ at CGI Security
- List of XSS holes in popular web applications
CSRF:
- Introduction from: Wikipedia and here
- Article by Chris Shiflett and CSRF Redirector test tool
- CSRF FAQ at CGI Security
- Array constructor overriding and setter overriding
- A solution: SameRefererOnly
- Protecting a JSON or JavaScript Service
Blogs:
Re: Web Application Security
Thank you Joe for your presentation - I am glad I didn't open up my website to HTML comments before understanding the security risks. I now know to whitelist instead of blacklist user input, thank you!
I also exposed the company I work for to DWR and at first pass they seem very intrigued. I am hoping it opens up the corporate door to Ajax.
Re: Web Application Security
If you take Tadalafil 20mg every day and you miss a dose, take the missed dose as soon as you remember
.....
Cool.. I have this too in progress. have been working on it for months, lol.. free advertising |jobs|tempurpedic mattress
pizza restaurant
Are you putting up a pizza restaurant within your vicinity? Then you may need to acquire your own pizza restaurant equipment and supplies for your soon-to-be food business. However, do you have any idea where you can get them from? philadelphia pizza restaurant philadelphia pizza restaurant The first option that you may look into is through asking your friends if they know a place where you could purchase high quality merchandise that could help you in starting up your own pizza business.
Re: Web Application Security
he Open Web Application Security Project (OWASP) is a 501c3 not-for-profit worldwide charitable organization focused on improving the security of application software.Generic Zoloft
Re: Web Application Security
the best web security presentation I've seen, i was looking some cheap deals on business email hosting services but i got here and i see really interesting work on your page.
Re: Web Application Security
Thanks for great materials and tips!
Web design development services
Re: Web Application Security
It is very important links. I study some of them and are pretty good. Thanks.
masiniauto second hand dezmembrari auto
Re: Web Application Security
Very nice picture. I appreciate this. Pittsburgh movers ,a leader in Local, Commercial & apartment Moving. Whether you are moving a few large items or entire building, we are always here to deliver the services.
Re: Web Application Security
I found this informative and interesting blog so i think so its very useful and knowledge able.I would like to thank you for the efforts you have made in writing this article. I am hoping the same best work from you in the future as well. In fact your creative writing abilities has inspired me.