| detection of sql injection and cross-site scripting |
This article goes through creating snort-rules that attempt to detect possible SQL injection attacks against a web-application. It also explains how to detect CSS attacks, usually meaning injecting HTML code into the fields, that could result in code |
693 |
|
| Firewalls complete  |
Secinf.net offers the Firewalls Complete book online. This covers pretty much all about firewalls and is very good read if you need to learn how to create rulesets and find out the best topologies for your own projects.
|
742 |
|
| How to create a sniffing cable |
This page explains in detail how one can create a receive-only cable that can be used for example in IDSes for added protection. It means the IDS never returns anything because it can't, if such a cable is installed. |
701 |
|
| Layer 2 sniffing |
This paper explains three different attacks that can be performed against a switched network. These attacks are ARP cache poisoning, CAM table flooding and switch port stealing. It also gives countermeasure recommendations against these.
|
545 |
|
| www.honeypots.net |
This site hosts about 600 links to IDS, honeypot & incident response resources. A very nice site for people needing to learn more about the areas. From this site you can also access resources for DNS security & wardriving, all kept by the same guy.
|
477 |
|
| www.networkintrusion.co.uk |
Taliskers Network Tools purpose is to list Intrusion Detection tools, firewalls and network security scanners. There is loads of these listed, both commercial and freeware. He also gives some overview of the product. Check it out if you're planning o |
460 |
