Ten of Application Security industry's coolest, most interesting, important, and entertaining links from the past week -- in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected!Detecting Malice eBookBlack Box vs White Box. You are doing it wrong.The Barack Obama Donations Site was Hacked…err, no it wasn’t.New Q3'09 malware data, and the Dasient Infection Library Infrastructure fingerprinting via XSS DNS Rebinding in FirefoxOutput Validation using the OWASP ESAPIGoogle Wave as a Tool for HackingAnnouncing the release of the Enhanced Mitigation Evaluation ToolkitAsset Valuation (couldn't settle on just one):Lindstrom's RazorA Grain of Salt for Digital Asset ValuesWhat is “Lindstrom’s Razor”?Information Asset Value: Some Cold-Hearted Calculations How to Value Digital Assets (Web Sites, etc.) On the value of ‘digital asset value’ for security decisions
WhiteHat Security is a leading provider of website security services.
Ten of Application Security industry's coolest, most interesting, important, and entertaining links from the past week -- in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected!
- Detecting Malice eBook
- Black Box vs White Box. You are doing it wrong.
- The Barack Obama Donations Site was Hacked…err, no it wasn’t.
- New Q3'09 malware data, and the Dasient Infection Library
- Infrastructure fingerprinting via XSS
- DNS Rebinding in Firefox
- Output Validation using the OWASP ESAPI
- Google Wave as a Tool for Hacking
- Announcing the release of the Enhanced Mitigation Evaluation Toolkit
- Asset Valuation (couldn't settle on just one):
