|
Statistics
Members: 1927
News: 293
Web Links: 1
Visitors: 3931598
Who's Online
We have 1 guest online
|
 Damn Vulnerable Linux (DVL) is a Linux-based (modified Damn Small Linux) tool for IT-Security & IT-Anti- Security and Attack & Defense. [ CLICK HERE FOR MORE INFOS! ]
|
Featured Conference Video
 OllyBone - Semi-Automatic Unpacking on IA-32. View the conference video here!
|
Vol.1, No.1, 2007
In the traditional software development lifecycle (SDLC), security testing is often an afterthought, and security verification and testing efforts are delayed until after the software has been developed. Vulnerabilities are an emergent property of software which appear throughout the design and implementation cycles. Therefore, you need to adopt a "before, during, and after" approach to software development. The Secure Software Engineering Journal deals with IT-Security & IT-Anti-Security and Attack & Defense. The Secure Software Engineering Journal is publishing articles after full peer review. All articles are published, without barriers to access, immediately upon acceptance. The Secure Software Engineering Journal is published frequently.
| The Holistic Way to Secure Software Engineering
|  | The Holistic Way to Secure Software Engineering
Software
projects fight with significant security defects in their released software projects.
This originates from the complex interplay of internal and external software
developers, software managers, customers, and time and budget pressure. Suc...
Read More >> |
| |
|
|
| Malicious Code Injection: It's Not Just for SQL Anymore
| | Malicious Code Injection: It's Not Just for SQL Anymore
More and more, developers are becoming aware of the threats posed by
malicious code, and SQL injection in particular, and by leaving code
vulnerable to such attacks. However, while SQL is the most popular type
of code injection attack, there are s...
Read More >> |
| |
|
|
| Testing in black and white
| | Testing in black and white
Software testing is still regarded by many as an art. Mark Harman explains coverage analysis, which allows us to put the whole process onto a more sound engineering footing.
Read More >> |
| |
|
|
| Application Security Testing Tools: Worth the Money?
| | Application Security Testing Tools: Worth the Money?
Application security testing tools are being sold as a solution to the problem of insecure software. However, these solutions aren't all they're cracked up to be. They may help us diagnose, describe, and demonstrate security problems, but the...
Read More >> |
| |
|
|
|