[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Requesting penetration test resources
- To: dave@xxxxxxxxxxxxxxxxxx (David Withnall)
- Subject: Re: [Full-disclosure] Requesting penetration test resources
- From: bugtraq@xxxxxxxxxxxxxxx
- Date: Thu, 17 Nov 2005 13:50:51 -0500 (EST)
Here are some links related to web application pen testing.
SQL Injection
http://www.cgisecurity.com/development/sql.shtml
Cross Site Scripting
http://www.cgisecurity.com/development/xss.shtml
Other Specific Web Application Attacks
http://www.cgisecurity.com/pen-test/
The Web Security Threat Classification
http://www.webappsec.org/projects/threat/
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/
Web Archive: http://www.webappsec.org/lists/websecurity/archive/2005-11/
- admin@xxxxxxxxxxxxxxx
http://www.cgisecurity.com
>
> I would be grateful if someone could provide some providers to resources
> where I might be able to learn the fundamentals of penetration testing
> for network security. I have researched a lot of web sites and found a
> couple of gems but it can be hard sorting out the wheat from the chaff
> sometimes, especially when you're a relative novice.
>
> Thanks.
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/