素包子

80vul写的非常优秀的文章，感谢80vul的三大马甲：80vul-A，80vul-B，80vul-C，存档一份，建议看原文。

http://code.google.com/p/pasc2at/wiki/SimplifiedChinese

阅读全文…

转载收藏。

阅读全文…

包子分享一下Web Application Firewall及安全开发生命周期（SDL）在企业内部推进的相关想法，还请各位拍砖。

阅读全文…

要搞PHP APP的SDL了，收集一把资料。

php-code-analysis-real-world-examples

 从去年开始,作者作为安全检测员,代表ACE组对GFS(Global Foundation Services)的MSN产品作最终安全检查（Final Security Review，简称FSR）。最终安全检查是以安全开发生命周期(Security Development Lifecycle，简称 SDL)为基础,对软件在出厂前作最终的安全检查。

阅读全文…

最危险的25种编码错误。

The 2010 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most widespread and critical programming errors that can lead to serious software vulnerabilities. They are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or prevent the software from working at all.

阅读全文…

有时需要检测SAFESEH是否打开，方法如下。

They can use “link.exe /dump /loadconfig <executable>” to verify the presence of the safe exception handler table in an executable.

dumpbin貌似也可以实现类似功能。

When Adobe announced that they would combine Flash and Acrobat, two heavily attacked and common software components, into one package, I was concerned. Combining two big attack surfaces into one bigger one seemed like a dangerous proposition.

阅读全文…

这个是binscope的帮助文档，非常好，可惜有些图片挪不过来，其实文字已经很精彩了；可以看到这些检查项目有哪些是不需要PDB的，有哪些是需要PDB的。另外这东西支持命令行调用，很方便自动化处理。仔细看下会发现included checks和程序GUI上的有点区别，有可能之间有一定的交叉或包含关系吧。

阅读全文…

实施mitigations前的好东西。Security mitigation technologies are technologies designed to make it more difficult for an attacker to exploit vulnerabilities in a given piece of software. The Enhanced Mitigation Evaluation Toolkit (EMET) is a toolkit that allows certain security mitigation technologies to be applied to user specified applications. It provides four unique capabilities:

阅读全文…