@TeriRadichel | Cloud. Security. Software.

Notes. Code. Cloud. AWS. Security. Automation. Databases. Bugs. Error Messages. No Guarantees.

Teri Radichel - Software Programmer and System Architect - Cloud + Security

  • 2nd Sight Lab
  • @teriradichel
  • GitHub
  • Seattle AWS
  • LinkedIn
  • Slideshare

Thursday, May 21, 2009

Some Good Web Site Security Links

Overview of things you should do to secure web applications

Cross frame scripting

Cookie Poisoning

Code injection - how it affects sites
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Newer Post Older Post Home

Blog Archive

  • ►  2017 (40)
    • ►  July (5)
    • ►  June (18)
    • ►  May (17)
  • ►  2016 (1)
    • ►  February (1)
  • ►  2015 (2)
    • ►  October (1)
    • ►  February (1)
  • ►  2014 (45)
    • ►  December (1)
    • ►  November (3)
    • ►  September (1)
    • ►  August (3)
    • ►  June (5)
    • ►  May (7)
    • ►  April (2)
    • ►  March (19)
    • ►  February (4)
  • ►  2013 (39)
    • ►  December (5)
    • ►  November (16)
    • ►  September (8)
    • ►  August (5)
    • ►  April (3)
    • ►  March (2)
  • ►  2012 (1)
    • ►  April (1)
  • ►  2011 (10)
    • ►  July (4)
    • ►  June (3)
    • ►  April (1)
    • ►  March (1)
    • ►  January (1)
  • ►  2010 (31)
    • ►  December (1)
    • ►  November (3)
    • ►  October (1)
    • ►  July (4)
    • ►  June (3)
    • ►  May (10)
    • ►  April (9)
  • ▼  2009 (28)
    • ►  October (2)
    • ►  September (3)
    • ►  August (2)
    • ▼  May (6)
      • Java Encryption
      • Special Characters to Block in Web Requests
      • Some Good Web Site Security Links
      • XSS
      • HTML Form File Upload
      • Singletons, Multithreading and Class Loaders
    • ►  April (6)
    • ►  March (8)
    • ►  February (1)
  • ►  2008 (2)
    • ►  December (1)
    • ►  November (1)
  • ►  2006 (2)
    • ►  August (1)
    • ►  May (1)

Security + Software + AWS

  • Secplicity
  • Seattle AWS Architects & Engineers Meet Up
  • Paper: Event Driven Security on AWS
  • Paper: Target Breach Case Study
  • Thoughts

Popular Posts

  • Timeout Connecting to S3 Endpoint From Lambda
    In my last post I explained how to turn on detailed Boto logging to get more information about an AWS error. The specific problem I was hav...
  • Hexadecimal to Binary to Decimal - Cheat Sheet
    I'm studying hexadecimal to decimal conversions for packet header analysis (IP, TCP, UDP, etc). Trying to come up with a cheat sheet t...
  • variable names in Fn::Sub syntax must contain only alphanumeric characters, underscores, periods, and colons
    While trying to use an ImportValue the way specified on the web sites in the UserData section of a CloudFormation template I go this error: ...
  • Decoding IP Header - Example
    Let's take a sample IP packet header and see what's in it. Here's our sample random IP header pulled out of WireShark traffic: ...
  • ImportValue in UserData with YAML ~ CloudFormation
    When trying to concoct a UserData statement in an EC2 CloudFormation in YAML a !SUB function can be used to replace variables in the UserD...
  • invalid ELF header - Import Error
    If you see this error when running an AWS lambda function: { "errorMessage": "/var/task/cryptography/hazmat/bindings/_cons...
  • SSL Certificates for Java Web Servers
    Digicert makes it pretty simple to get SSL certificates for Java web servers. I like. They have a tool to generate the command line code you...
  • Content is not allowed in prolog.
    If you see the "Content is not allowed in prolog" error trying to transform xml and xsl the various problems I have found that hav...
  • Find all the AMI IDs from a specific vendor in the AWS Marketplace
    I am trying to find a way to get a list of AMIs from a specific vendor in the AWS Marketplace. I thought I figured out a way to do this but ...
  • Route Tables: Protecting Your Network
    When you set up your network it is very important to understand how route tables work and how they open up access to your network in uninten...

Favorites

  • Secplicity
  • SANS Technology Institute
  • AWS Blog
  • AWS Security Blog
  • All Things Distributed
  • Most Viewed AWS Security Topics
  • AWS Service Health Dashboard
  • AWS Security Bulletins
  • Teri Radichel
© Teri Radichel 2017. Awesome Inc. theme. Powered by Blogger.