Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. A Lazy Pen Tester’s Guide to Testing Flash Applications Rock Beats Scissors, and People Beat Process Hacker threat forces DoH to close appraisal site Feds say dev’s ‘cookie-stuffer’ app fleeced eBay A Few Billion Lines of Code Later: Using Static Analysis to Find Bugs in the Real World Death of Product Reviews Are You Rugged?

Go here to see the original:
Best of Application Security (Friday, Feb. 12)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Is APT After You

Read more from the original source:
Best of Application Security (Friday, Jan. 22)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Top Ten Web Hacking Techniques of 2009 (Official) Default https access for Gmail new static analyzer from Google Purported Interview With Facebook Employee Details Use Of ‘Master Password’ Software testing firm says no to responsible disclosure Web-based systems vs

View original post here:
Best of Application Security (Friday, Jan. 15)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order.

Go here to read the rest:
Best of Application Security (Friday, Dec. 25)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected! Why Chrome has No NoScript Cross-domain search timing A checklist approach to security code reviews Potent malware link infects almost 300,000 webpages HTML5 new XSS vectors Perspective on Pentagon “Pwnage” Cross-Site Request Forgery For POST Requests With An XML Body Security in Syndicated and Federated Systems IP Spoofing How fake sites trick search engines to hit the top WhiteHat Security is a leading provider of website security services

See more here:
Best of Application Security (Friday, Dec. 11)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected! Injection attacks, its not just SQL! You’ve been hacked.

See original here:
Best of Application Security (Friday, Nov. 27)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order.

Follow this link:
Best of Application Security (Friday, Nov. 13)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end

The rest is here:
Best of Application Security (Friday, Oct. 23)

Note: Delayed due to travel requirements. Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end.

See the article here:
Best of Application Security (Friday, Oct. 16)

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected! null-prefix certificate for paypal Statistics from 10,000 leaked Hotmail passwords OWASP Interview with Andy Steingruebl Web Application Security Scanner Evaluation Criteria Version 1.0 All about Website Password Policies 9 Ways to Improve Application Security After an Incident CSS History Hack Used To Ban Torrent Users BSIMM Begin Identifying Denial of Service Conditions Through Performance Monitoring XSS Protection by Default in Rails 3.0 WhiteHat Security is a leading provider of website security services

See the article here:
Best of Application Security (Friday, Oct. 9)