Before beginning any project, I start by researching the topic and pulling documents. I do have my favorite spots to look, such as O’Reilly, NIST, the Center for Internet Security Benchmarks, Safari Books Online, ISACA, SANS, OWASP, Build Security In, a few choice blogs, etc. While preparing to write an upcoming post on [...]
Read Full Post »
“Change is the constant, the signal for rebirth, the egg of the phoenix” — Christina Baldwin
Many of the security issues we are beginning to see with Web applications are issues that we have seen in some form with traditional client/server applications. Unlike the Phoenix, the Web application security issues are not rising from the [...]
Read Full Post »
Posted in Forensics, To Do, Web Application on May 27th, 2007
“Far better is it to dare mighty things, to win glorious triumphs even though checkered by failure than to take rank with those poor spirits who neither enjoy much nor suffer much because they live in the grey twilight that knows neither victory nor defeat.” — Theodore Roosevelt
I am, and will always be, an O’Reilly [...]
Read Full Post »