WWW (Internet)

WWW further on these related pages:

Browsers@ Cross Site Scripting Java@

Top/Computers/Internet/Proxying and Filtering/Content Filtering/Advertising Top/Computers/Internet/WWW Top/Computers/Internet/Web Design and Development/Hosting Top/Computers/Security/Internet/Privacy Top/Computers/Software/Shareware/Windows/Security/Parental Control

WWW Sites:

The Open Web Application Security Project The Open Web Application Security Project: How to build, design and test the security of web appplications and web services (WWW) http://www.owasp.org Total Simplicity Total Simplicity: Total Simplicity is a full on technical company providing hosting, custom programming, security, and online stores. (WWW) http://www.totalsimplicity.com Northfell Northfell: Article on website hacking covering footprinting, IP scanning and an example IIS hack. Also has computer security weblog and an overview of BS7799. (WWW) http://www.northfell.com/ Shockwave Security Alert Shockwave Security Alert: Lists potential privacy issues or security holes created by Shockwave and solutions for them. (WWW) http://www.webcomics.com/shockwave/ W3Schools.com: Web Security W3Schools.com: Web Security: Covers basic privacy issues. (WWW) http://www.w3schools.com/site/site_security.asp CIAC: Unix NCSA httpd Vulnerability CIAC: Unix NCSA httpd Vulnerability: An advisory detailing a vulnerability that has been discovered in the NCSA WWW server software (httpd). (WWW) http://www.ciac.org/ciac/bulletins/f-11.shtml screamingCobra screamingCobra: Free application for remote vulnerability discovery in unknown CGI scripts. Includes mailing list, documentation, news, and source code. (WWW) http://cobra.LucidX.com/ World Wide Web (in)Security World Wide Web (in)Security: Demonstrations of security risks and advice for safe use of a web browser. (WWW) http://www.swcp.com/~mccurley/danger/danger.html Web Security: A Matter of Trust Web Security: A Matter of Trust: Collection of original articles. (WWW) http://www.w3j.com/7/ Web Spoofing Web Spoofing: Full text of a paper discussing an 'attack' that threatens both privacy and data integrity. Written by Edward W. Felten, Dirk Balfanz, Drew Dean, and Dan S. Wallach. Available in various formats including PDF and Postscript. (WWW) http://www.cs.princeton.edu/sip/WebSpoofing/ Hacking Exposed: Web Applications Hacking Exposed: Web Applications: Book that covers how to hack web applications, and how to secure against the attacks detailed. Author profiles, links to tools referenced in the book and reviews. (WWW) http://www.webhackingexposed.com/ WebAgain WebAgain: Protects a web site from defacement and automatically repairs hacked pages. (WWW) http://www.lockstep.com/products/webagain/wa-product.html Microsoft TechNet Security - Web Site Security Microsoft TechNet Security - Web Site Security: Provides technical how to information and links to other security resources. (WWW) http://www.microsoft.com/technet/security/web.asp Web Workshop - Untangling Web Security Web Workshop - Untangling Web Security: Using IIS to configure and maintain Web security. (WWW) http://msdn.microsoft.com/workshop/server/iis/Websec.asp Are Secure Internet Transactions Really Secure? Are Secure Internet Transactions Really Secure?: This paper describes how many small business claim to be offering a secure order form, when in fact, they really are not. The paper shows how the insecurity occurs, and offers a few solutions to the problem. (WWW) http://www.jsweb.net/paper.htm Internet Explorer Automatic Web Script Form Filler Internet Explorer Automatic Web Script Form Filler: Software for automatic security and functionality testing of web sites. Record and replay your web surfing, form filling and downloading. Supports command line options via batch files, scripts and windows task scheduler. (WWW) http://www.internetmacro.com Elite Secure Elite Secure: Web Application Firewall with Access Policy Management (WWW) http://www.elitesecureweb.com DuoWorks UK Ltd DuoWorks UK Ltd: WebAlarm anti web defacement software. (WWW) http://www.duoworks.com The WWW Security FAQ The WWW Security FAQ: Includes securing your server, protecting confidential documents on your site, safe CGI programming, client security, and privacy. (WWW) http://www.w3.org/Security/Faq/ Spyware and Adware Removal Spyware and Adware Removal: Contains news, products, services, information, and resources for the consumer about spyware/adware removal. (WWW) http://www.free-spyware-adware-removal.net/ Download Accessdiver Download Accessdiver: Detect security failures on any kind of web sites. (WWW) http://www.accessdiver.com W3C Security Resources W3C Security Resources: Provides an overview of web security and links to security initiatives such as PICS Signed Labels, and XML-DSig. (WWW) http://www.w3.org/Security/ Cgisecurity.com Cgisecurity.com: This site is designed to help user to learn about what kinds of security risks exist and how to prevent them from happening. (WWW) http://www.cgisecurity.com/ COAST Hotlist: Security in the WWW COAST Hotlist: Security in the WWW: A collection of links related to WWW security. (WWW) http://www.cerias.purdue.edu/tools_and_resources/hotlist/ Client Side Trojan Client Side Trojan: By clicking on maliciously formed HTML tags users can unknowingly perform undesirable actions. (WWW) http://www.zope.org/Members/jim/ZopeSecurity/ClientSideTrojan Phrack: Against the System - Rise of the Robots Phrack: Against the System - Rise of the Robots: Michal Zalewski theorizes how Web crawlers can be exploited to inadvertently attack remote systems. (WWW) http://www.phrack.org/show.php?p=57&a=10