Table of Contents

Secure programming

Security programming courses

Buffer overflow

Format string vulnerabilities

Cryptography

Compiler security flags

http://msdn.microsoft.com/en-us/library/aa290051%28v=vs.71%29.aspx

Static analysis tools

RATS analyzer

CWE vulnerabilities

Taint analysis

Fuzzing

:\Program Files\Debugging Tools for Windows (x86)\dbgeng.dll'.

Notes

A1 Injection 

  A2 Broken Authentication and Session Management
  A3 Cross-Site Scripting (XSS)
  A4 Insecure Direct Object References
  A5 Security Misconfiguration
  A6 Sensitive Data Exposure
  A7 Missing Function Level Access Control
  A8 Cross-Site Request Forgery (CSRF)
  A9 Using Components with Known Vulnerabilities
  A10 Unvalidated Redirects and Forwards

OWASP tools

Web security testing tool

Vulnerable app / distro / hackme challenges

Security-supporting library

Security processes and awareness