Principles of Security

In this video, Douglas Crockford outlines the basic principles of designing secure software, with a focus on web applications. He starts at the beginning with the invention of language itself and makes a strong case for designing secure software based on fundamental principles rather than specific techniques, tricks, or hacks.

SQL Injection

SQL Injection is a vulnerability that is often missed by web application security scanners, and it’s a vulnerability that is often rated as NOT exploitable by security testers when it actually can be exploited. Advanced SQL Injection is a presentation geared toward showing security professionals advanced exploitation techniques for situations …