Security/OtherSecurityResources
From MozillaWiki
< Security
Contents
Other Security Resources for Information
Third Party Blogs
- Adam Langley
- Michał Zalewski
- Chris Evans
- New School of Security
- Adam Barth
- Collin Jackson & friends
- Google Online Security Blog
- SkyLined
- Bruce Schneier
- Tor Project Blog
- Colin Percival (FreeBSD Security Officer)
- Neal Poole
- Dancho Danchev
Official security blogs of browser vendors
- Opera Security Group
- IE Blog Security Posts
- Chromium Blog Security Posts
- Google Chrome Releases
- Microsoft Security Response Center
- Security Folks twitter list - Miscellaneous Security people on twitter.
News Sites
- http://msinfluentials.com/blogs/jesper/default.aspx
- http://www.offensivecomputing.net
- http://www.team-cymru.org/News/
- http://taossa.com
- http://www.darknet.org.uk
- http://www.sensepost.com/blog
- http://www.f-secure.com/weblog
- http://ha.ckers.org/blog
- http://secunia.com
- https://community.rapid7.com/community/solutions/metasploit?view=blog
- http://technet.microsoft.com/security/bulletin
- http://packetstormsecurity.org
- http://isc.sans.edu
- http://www.securityfocus.com
- http://taosecurity.blogspot.com
- http://news.cnet.com/security/
- http://krebsonsecurity.com/ - focus on crime & malware
- http://www.theregister.co.uk/security/
- http://www.coresecurity.com/content/advisories-feed
- http://www.exploit-db.com/
- http://www.sickurity.com/
- http://contagiodump.blogspot.com/
- http://www.securelist.com/en/weblog
- https://www.zerodayinitiative.com/advisories/upcoming/
- https://www.exploithub.com/
- http://thehackernews.com
Miscellaneous Other Sites
- http://www.peopleskillsdecoded.com
- http://sethgodin.typepad.com/seths_blog/
- http://sourcesofinsight.com
- http://www.owasp.org
- http://www.woodmann.com/ - "Your One Stop Shop for Reverse Engineering"
Cheetsheets/Guides
- https://www.owasp.org/index.php/Cheat_Sheets
- http://ha.ckers.org/xss.html
- http://websec.wordpress.com/2010/12/04/sqli-filter-evasion-cheat-sheet-mysql/
- https://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet
Tools
- FuzzDB
- Web Application Fuzzing
- Web Security Scanner
- OWASP Zed Attack Proxy Project
- Packet crafting tool
- Knowledge Base / Sharing for Testing Projects
- Web Application Attack Framework
- PHP Static Anlaysis
- SQL Injection Scanner
- Peach Fuzzing Framework
- C/C++ Static Analysis