Articles in open source

  1. dotProject Multiple Vulnerabilities - dotProject (http://www.dotproject.net/) is a robust open source project management tool written in PHP and MySQL. dotProject contains numerous serious cross site scripting (XSS) and SQL injection vulnerabilities.
  2. Security Researchers in the Open Source Ecosystem - Although it may be a hassle for developers to deal with researchers it is critical to the success of open source projects.
  3. Google Safe Browsing API - Google has put together a really cool API that allows developers to query their database of suspected malware and phishing sites.
  4. dotProject for Calculating Metrics - dotProject is a wonderful open source project management suite written in PHP.
  5. User Insecurity and Open Source Projects - Who should be responsible for protecting users from themselves? Should the Drupal core code base prevent such situations from even being possible? It's arguable that they should.
  6. OSSEC HIDS 1.6 Released - On September 1, OSSEC announced the release of the latest version of the OSSEC-HIDS tool (version 1.6).
  7. Modding RoundCube to Add Contact Information - ecently I’ve been working on taking advantage of the fact that it’s open source software to add some new features that I feel are critical for me. One such feature was to expand the built in contacts function.

Top Articles

  1. Installing Nikto on Windows
  2. SSHatter SSH Brute Forcer
  3. PHP Arbitrary File Include
  4. Hardening PHP from php.ini
  5. Web Hacking Lesson 4 - File Include Vulnerabilities
  6. e107 XSS and XSRF Vulnerabilities
  7. Madirish Tutorial 11 (Brute Forcing)
  8. Using the Google Safe Browsing API from PHP
  9. JavaScript Email Validation
  10. Beginners Guide to PHP

Tags

advisory, apache, authentication, brute force, c, certification, cms, computers, database, development, disclosure, drupal, editorial, email, encryption, exploit, feature, firewall, hardening, hardware, honeypot, how-to, incident response, intrusion detection, java, javascript, linux, malware, microsoft, mysql, networking, open source, oracle, ossec, perl, phishing, php, privacy, review, rootkits, security, social engineering, sql injection, ssh, tools, virtualization, virus, vulnerability, website, wireless, xml, xsrf, xss

Links

Sites or researchers I dig

Blog Articles

Advisories