For more information about the site, see the
When to follow Big Design Upfront (BDU) planning
Use cases don't need to include all system functionality details
How detailed should software requirements be?
Benefits of project management training, certification
How important is requirements traceability?
Qualities to look for in a software performance tester
How to get testers involved early in development
Migrating users and passwords to ASP.NET 2.0
Creating password recovery mechanisms in ASP.NET
Authentication - From passwords to passphrases
Enabling HTTPS in J2EE Web components
Denial of service and Ajax
Making sense of WS-Policy and SAML
Beginning a Java security career
Sorting out black box, white box and gray box software testing methods
Alternatives to server-side includes for ASP.NET
Vulnerability scanners: The automation option
Cross-site request forgery: How this Web exploit works
Obfuscation may prevent reverse engineering
Understanding XPath injection
Cryptography and Java applications
Obfuscation tools and application security
User management and login security controls in ASP.NET
Application security throughout the SDLC
XSS prevention in Java
Cross-site tracing explained
Creating a secure login page with Java
Limiting user access in ASP.NET
Java developers need to think about security
ASP.NET security tools and techniques
How to avoid LDAP injection in J2EE apps
Code analysis: Which tool is right for you?
What's a good authentication method for Java?
Secure Web services in J2EE
Cookie poisoning prevention in ASP.NET
Traversal attacks: How to secure against them
Using fuzzer tools to find vulnerabilities
Guarding against XSS in ASP.NET
How to safely deploy Ajax applications
Enforcing software licenses
How does WS-Security relate to other WS- standards?
Understanding and preventing integer overflows
Manual vs. automated penetration testing
Beyond intrusion detection
How to create a secure login page using ASP.NET
How to protect your Web site against buffer overruns
Distinguishing a faked XMLHTTP request from a real one
Creating a secure login page
SSL protects data in transit, but not apps
Data breach legislation could affect Web site development
The best way to secure a Web site
Can you prevent SQL injection attacks with stored procedures?
ASP.NET Forms Authentication in version 2.0
Encryption and .NET application security
The importance of WS-Security
XML security: Preventing XML bombs
Why are Web services more vulnerable than Web apps?
Can network pros handle application security?
Ajax's effect on Web services security
How do government regulations address application security?
Is .NET less vulnerable to application security hacks?
Complying with the PCI Data Security Standard
Stay on top of your Web app hosting provider
Basics of application security
Are my apps secure?
Are development security tools necessary?
What's the best tool to get started security testing?
What kinds of app security tools are there?
What is XPath Injection?
Do application security initiatives work?
When to use WS-Security and SSL
What are application security initiatives?
Reason for application vulnerabilities
Why do Web services impact security?