COGBLOG

In the last few months, I’ve learned quite a lot about web application security. Not to say that my knowledge is comprehensive–this is a topic where the more you learn, the more you realize you need to know.

One of the very best blogs I’ve found on the topic is RSnake’s ha.ckers.org. Always a fresh article, lots of good links, and very readable for a fairly technical topic. It is worth checking out.

Thursday, he posted a link to this very nice SQL Injection Cheat Sheet. And, he has his own XSS (cross site scripting) Cheat Sheet as well.

Yay, get paranoid everybody!