Intelligentedu
Translate to EnglishÜbersetzen Sie zum Deutsch/GermanTraduzca al Español/SpanishTraduisez au Français/FrenchTraduca ad Italiano/ItalianTraduza ao Português/Portuguese日本語に翻訳しなさい /Japanese
한국어에게 번역하십시오/Korean中文翻译/Chinese Simplified中文翻译/Chinese Traditionalترجمة الى العربية/ArabicVertaal aan het Nederlands/DutchΜεταφράστε στα ελληνικά/GreekПереведите к русскому/Russian


 



     Blog Roll:


     Top Links:

March 1, 2007

Free Book on Building Secure Web Applications

The Open Web Application Security Project (OWASP.org) has written and published a free 293-page book detailing how to build and develop Secure Web Applications. This guide carefully explains many common  web security issues, such as cross site scripting and SQL injection vulnerabilities. It provides information about securing most forms of web applications and services, along with real world guidance using J2EE, ASP.NET, and PHP samples. It also discusses Microsoft's Threat Risk Modeling strategy, as well as several other security methodologies, such as Trike, CVSS, AS4360, and Octave. Here is a zip download of the guide. OWASP also provides some excellent Web Security Presentations and Web Security Papers.


A Guide to Building Secure Web Applications and Web Services
(3.1mb, pdf format)

Table of Contents

  • About The Open Web Application Security Project
  • Introduction
  • What Are Web Applications?
  • Security Architecture And Design
  • Secure Coding Principles
  • Threat Risk Modeling
  • Handling E-Commerce Payments
  • Phishing
  • Web Services
  • Authentication
  • Authorization
  • Session Management
  • Data Validation
  • Interpreter Injection
  • Canoncalization, Locale And Unicode
  • Error Handling, Auditing And Logging
  • File System
  • Buffer Overflows
  • Administrative Interfaces
  • Cryptography
  • Configuration
  • Maintenance
  • Denial Of Service Attacks
  • Gnu Free Documentation License
  • Php Guidelines
  • Cheat Sheets

Technorati Tags: , , ,

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • blogmarks
  • del.icio.us
  • Furl
  • Reddit
  • Shadows
  • YahooMyWeb
  • StumbleUpon
  • Digg
Related Posts:
  • Free ASP.NET Book: Improving Web Application Security
  • Free Training for Visual Basic .Net
  • Free Course on Web Development with .NET
  • Free Linux, Networking, and Security Ebooks
  • 12 Free Book Chapters for ASP.Net

  • Filed under: Free Computer and I.T. Books — computer_teacher @ 11:19 pm

    No Comments

    No comments yet.

    RSS feed for comments on this post.

    Sorry, the comment form is closed at this time.



    Powered by WordPress