OpenID Server for YubiKey
Installation of an OpenID Server for the YubiKey authentication
http://code.google.com/p/yubico-openid-server/wiki/ReadMeYubico
Installation of an OpenID Server for the YubiKey authentication
http://code.google.com/p/yubico-openid-server/wiki/ReadMeYubico
OWASP released an “SQL Prevention Cheat Sheet”: http://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet
General notes:
Notes on the VMware version:
Open issues:
For checking an IP address for Google suspicious checking use the following URL:
http://google.com/safebrowsing/diagnostic?site= <IP-Address>
Here’s a nice 2x 15 minutes video tutorial for the basics of pentesting:
Part 1: http://www.ethicalhacker.net/content/view/227/24/
Part 2: http://www.ethicalhacker.net/content/view/238/24/
Here’s a video tutorial on using the Pass-The-Hash toolkit on Windows:
http://www.ethicalhacker.net/content/view/249/24/
Here is a description of the “Microsoft Office Isolated Conversion Environment” provided by Microsoft to create a safer environment working with MS Office files:
http://support.microsoft.com/kb/935865
Here is a nice list of websites which contain tests and content for improving hacking and pentesting skills:
http://ha.ckers.org/blog/20090406/hacking-without-all-the-jailtime/
SANS pointed out an interesting configuration issue concerning Apache and PHP which is especially important when dealing with user uploads:
http://isc.sans.org/diary.html?storyid=6139
A new version of “Parted Magic” is available for download:
http://partedmagic.com/download.html
Here you can find information on how to create media:
http://partedmagic.com/documentation/116-creating-the-media.html