PUBLIC MARKS with tags info-sec & web-dev

It's that time of year again, when I get to work on new features (instead of supporting the old ones). With a major change to the version number of the way I took the opportunity to introduce major improvements too. ModSecurity 2.0.0-dev1 is available right now and it offers the following major improvements:

eVuln provides the folowing services: Web Application Source Code Analysis - Whitebox TestSecurity Implementation ConsultingWeb Application Remote Penetration Test - Blackbox TestIncident Response

Web security is a complex topic, encompassing computer system security, network security, authentication services, message validation, personal privacy issues, and cryptography. This page contains links to various aspects of Web and Internet security.

PHP Input Filter - 1.2.2 ..is a free php class that allows developers to easily filter input coming from the user (HTML forms, cookies etc) for a number of reasons. The focus of this tool is on customisation. v1.2.2 features SQL injection support, PHP5 Strict version, as well as several patches and bugfixes. Thanks to everyone who's emailed in to make this much more stable and well-rounded.

This is a list of common security concerns for web applications that can be or should be solved at the application development level with a focus on PHP solutions.

Free Programmers', Webmasters' and Security Resources

: Web Security, and Web Application Security News

This article presents topics that will help you make Mac OS X secure. If you are familiar with UNIX systems, you may want to skip the following section, which discusses some basic UNIX concepts, and move to the later portion of the article, which looks at the specifics of Mac OS X security. If, however, you come to Mac OS X from OS 9.x and would like some UNIX background information, be sure to read what follows.

ModSecurity is an open source intrusion detection and prevention engine for web applications (or a web application firewall). Operating as an Apache Web server module or standalone, the purpose of ModSecurity is to increase web application security, protecting web applications from known and unknown attacks.