Thursday, October 15, 2009

Feeds I Monitor

Sometimes I want to share the security feeds/blogs I monitor with others, so I usually just give out this link BUT, Bloglines is really really slow opening some of the feeds from that link. So, I've decided to just post all of the feeds and blogs I monitor here:

-atlas wandering-
.:Computer Defense:.
360 Security
Alex's Corner
Amrit Williams Blog
An IT Professional’s Blog
Andrew Martin
Anurag Agarwal - Application Security Evangelist
AppSec Street Fighter - SANS Institute
Billy (BK) Rios
Blog | Security Whole
Boaz Gelbord
CGISecurity - Website and Application Security News
cktricky and Web Application Security
Command Line Kung Fu
Confessions of a Penetration Tester
Daily Dave
Dancho Danchev's Blog - Mind Streams of Information Security Kno
DarkReading - All Stories
deep inside | security & tools
Denim Group, Ltd.
Digital Soapbox - Preaching Security to the Digital Masses
Disenchant's Blog
Eric's Musings on the Security World
F-Secure Antivirus Research Weblog
F-Secure Latest 10 Corporate News Rss Feed
FireEye Malware Intelligence Lab
Firewall Wizards
Forage Security
Full Disclosure
GNUCITIZEN web application security lab
Hex blog
IDS Focus
In.Security Home
Indistinguishable from Jesse
Info Security News
It's a shampoo world anyway
Jack Mannino
Jeremiah Grossman
Laramies Corner
Matasano Chargen
Matt Blaze's Exhaustive Search
McAfee Avert Labs
Michael Howard's Web Log
Minded Security Blog
MS Sec Notification
Network Security Blog
Nibble Security
Nitesh Dhanjani
p42 labs
Penetration Testing - web application security
random dross
The RISKS Forum
SANS Internet Storm Center, InfoCON: green
SANS ISC SecNewsFeed
Schneier on Security
SecureWorks Research Blog
Security Bytes
The Security Catalyst
Security Fix
Security Incite Rants
The Security Shoggoth
Security Thoughts
Security to the Core | Arbor Networks Security » 2009's Security Recruiter Blog
Shadowserver Foundation | Information / Whitepapers
Shadowserver Foundation | Main / HomePage
Silver Tail Blog
The Spanner
Sunbelt Blog
Sylvan von Stuppe
Tactical Web Application Security
TaoSecurity Security
Threat Level
ThreatExpert Blog
ThreatFire Research Blog
TrendLabs | Malware Blog - by Trend Micro
Vulnerability Development (vuln-dev) Mailing List
Web App Security
Wired Top Stories
XSSed syndication
Zero Day
Zscaler Research

Enjoy! I'll be keeping this updated as well.

Monday, October 5, 2009

CERT Secure Coding Site Down

(10/5/2009 8:54 AM) EDIT:The site is now up and running

Well, this would be at least a little embarassing:

At the time of this posting, the entire site seems to be down. Isn't information disclosure part of secure coding? The error message probably isn't a big deal, but still...

This is what says about information disclosure on their site: actual link, google's cache. A better link: Top 25 Programming Errors (see CWE-209).