[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html
(tutorial javascript security scripting) 
[Discover] XSS (Cross Site Scripting) Cheat Sheet http://ha.ckers.org/xss.html (security javascript cheatsheet hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (php security library filter)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/index.php (php scanner sql security)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/webinterface.php (php security sql scanner)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] Businessinfo web security applications & experiments http://businessinfo.co.uk/ (javascript development security xss)
[Discover] Web Application Penetration Testing http://www.cgisecurity.com/pen-test/?ref=2 (bruteforce injection sql pentest)
[Discover] Point Blank Security - Cross Site Scripting Blacklist #1 http://www.pointblanksecurity.com/xss/ (security xss)
[Discover] XSSDB http://www.gnucitizen.org/xssdb/ (security reference pentest xss)
[Discover] BlogSecurity » WordPress Scanner http://blogsecurity.net/wordpress/tools/wp-scanner/ (wordpress security blog tools)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] Web Application Security - Joe Walker's Blog http://getahead.org/blog/joe/2007/10/29/web_application_security.html (javascript security ajax xss)
[Discover] ha.ckers.org web application security lab - Archive » Cross Site Printing http://ha.ckers.org/blog/20080108/cross-site-printing/ (security xss printing javascript)
[Discover] Don’t serve JSON as text/html http://jibbering.com/blog/?p=514 (javascript exploit security json)
[Discover] Mellow Morning » Introducing a cross site ajax plugin for Prototype http://www.mellowmorning.com/2007/10/25/introducing-a-cross-site-ajax-plugin-for-prototype/ (javascript prototype library programming)
[Discover] John Resig - Cross-Site XMLHttpRequest http://ejohn.org/blog/cross-site-xmlhttprequest/ (ajax javascript security xmlhttprequest)
[Discover] Category:OWASP CAL9000 Project - OWASP http://www.owasp.org/index.php/Category:OWASP_CAL9000_Project (security testing opensource hacking)
[Discover] Class: PHP Input Filter (sql injection, xss, inputfilter, input filter) - PHP Classes http://www.phpclasses.org/browse/package/2189.html (php security opensource filtering)
[Discover] DOM Based Cross Site Scripting http://www.webappsec.org/projects/articles/071105.html (security xss javascript dom)
[Discover] Five common Web application vulnerabilities http://www.securityfocus.com/infocus/1864 (penetration security testing network)
[Discover] Wapiti - Web application security auditor http://wapiti.sourceforge.net/ (testing python opensource programming)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies (Internet Explorer - DHTML) http://msdn.microsoft.com/workshop/author/dhtml/httponly_cookies.asp (http microsoft cookie security)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > The XSS ... http://www.informit.com/articles/article.asp?p=603037&rl=1 (security xss programming php)
[Discover] Category:OWASP Fuzzing Code Database - OWASP http://www.owasp.org/index.php/Category:OWASP_Fuzzing_Code_Database (directory sql xss owasp)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (security php xss form)
[Discover] sklar.com : PHP and the OWASP Top Ten Security Vulnerabilities http://www.sklar.com/page/article/owasp-top-ten (php security programming authentication)
[Discover] Chris Shiflett: Character Encoding and XSS http://shiflett.org/blog/2007/may/character-encoding-and-xss (php encoding security xss)
[Discover] HTML Purifier http://hp.jpsband.org/ (security programming php html)
[Discover] php security by example (flash demo) http://brainbulb.com/talks/php-security-by-example.swf (php security programming howto)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] evan_tech -- myspace worm http://www.livejournal.com/community/evan_tech/150019.html (javascript security hacks scripting)
[Discover] bindshell - the cross-site scripting virus whitepaper http://www.bindshell.net/papers/xssv.html (security javascript virus xss)
[Discover] InformIT: XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > http://www.informit.com/articles/article.aspx?p=603037&seqNum=1 (pentest xss)
[Discover] Syngress Publishing - Cross Site Scripting Attacks: XSS Exploits and Defense http://www.syngress.com/catalog/?pid=4360 (development security xss)
[Discover] What XSS isn't http://neosmart.net/blog/archives/194 (security javascript xss exploits)
[Discover] Chris Shiflett: Myspace CSRF and XSS Worm (Samy) http://shiflett.org/archive/158 (javascript security xss article)
[Discover] SourceForge.net: XSS-Proxy http://sourceforge.net/projects/xss-proxy (security hacking xss tool)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] Real World XSS - Introduction http://sandsprite.com/Sleuth/papers/RealWorld_XSS_1.html (security xss hack toread)
[Discover] My Greasemonkey Scripts http://www.whiteacid.org/greasemonkey/#xss_assistant (security webapp tool tools)
[Discover] Cross Site Scripting Info http://httpd.apache.org/info/css-security/ (xss apache security)
[Discover] Remote Scripting with IFRAME http://developer.apple.com/internet/webcontent/iframe.html (javascript iframe html programming)
[Discover] Testing for Incubated Vulnerability - OWASP http://www.owasp.org/index.php/Testing_for_Incubated_Vulnerability (xss)
[Discover] OWASP http://www.owasp.org/ (security development architecture community)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > Using ( ... http://www.informit.com/articles/article.asp?p=603037&seqNum=2&rl=1 (authentication hack session id)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] XSS (Cross Site Scripting) Cheat Sheet http://ha.ckers.org/xss.html (security javascript cheatsheet hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (php security library filter)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (security php xss form)
[Discover] Sylvan von Stuppe: Eradicate XSS Once and for All http://sylvanvonstuppe.blogspot.com/2006/11/eradicate-xss-once-and-for-all.html (web.security.best.practices web.security web.secure.programming web.app.security)
[Discover] Web Security With Ingress Filtering - igvita.com http://www.igvita.com/blog/2007/04/27/web-security-with-ingress-filtering/ (security rubyonrails ruby rails)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] Google GMail E-mail Hijack Technique | GNUCITIZEN http://www.gnucitizen.org/blog/google-gmail-e-mail-hijack-technique/ (google exploit email security)
[Discover] Slashdot | Yahoo! XSS Flaw Endangers its Users http://it.slashdot.org/it/07/06/15/0528212.shtml (xss vulnerability yahoo)
[Discover] Home : The Official Microsoft ASP.NET 2.0 Site : English http://www.asp.net/faq/RequestValidation.aspx (.net asp.net http security)
[Discover] Dark Reading - Desktop Security - CSRF Vulnerability: A 'Sleeping Giant' - Security News Analysis http://www.darkreading.com/document.asp?doc_id=107651&WT.svl=news1_2 (web.security.best.practices web.attacks web.security xsrf)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] 2.0.0 Released - News - HTML Purifier http://htmlpurifier.org/news/2.0.0-released.html (html security filter php)
[Discover] Aaron Johnson: Cross site scripting: removing meta-characters from user-supplied data in CGI ... http://cephas.net/blog/2003/10/31/cross_site_scripting_removing_metacharacters_from_usersupplied_dat ... (websecurity java security xss)
[Discover] Dinis Cruz Blog » Blog Archive » An example of a flawed XSS BlackList filter http://blogs.owasp.org/diniscruz/2007/01/23/an-example-of-a-flawed-xss-blacklist-filter/ (web.security web.app.security security web.attacks)
[Discover] Basic XSS Tutorial - EliteHackers.info Discussion Forums http://www.elitehackers.info/forums/showthread.php?p=52491 (pci xss)
[Discover] The Art of Software Security Assessment » Same-Origin Policy Part 1: Why we’re stuck with ... http://taossa.com/index.php/2007/02/08/same-origin-policy/#more-61 (xsrf security xss same.origin.policy)
[Discover] A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes? http://blog.moertel.com/articles/2006/10/18/a-type-based-solution-to-the-strings-problem (security haskell programming types)
[Discover] OWASP Stinger Project - OWASP http://www.owasp.org/index.php/OWASP_Stinger_Project (websecurity validation owasp sanitizing)
[Discover] Cross-site request forgery - Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Cross-site_request_forgery (csrf security programming hacking)
[Discover] Demonstrating the Consequences of Cross Site Scripting (XSS) Vulnerabilities - O'Reilly ONLamp Blog http://www.oreillynet.com/onlamp/blog/2006/12/demonstrating_the_consequences.html (security xss scripting cross)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] http://svn.techno-weenie.net/projects/plugins/white_list/README http://svn.techno-weenie.net/projects/plugins/white_list/README (rails html helper rubyonrails)
[Discover] 23C3: Subverting AJAX http://events.ccc.de/congress/2006/Fahrplan/events/1602.en.html (ajax security javascript hack)
[Discover] SEO Egghead » Blog Archive » Auditing for HTML Tainting http://www.seoegghead.com/blog/black-hat-seo/auditing-for-html-tainting-p43.html (html security xss hacking)
[Discover] HTML Sanitization [Universal Feed Parser] http://www.feedparser.org/docs/html-sanitization.html (security rss html javascript)
[Discover] got? :ruby (Farooq Ali) http://www.jroller.com/abstractScope/entry/xss_facebook (facebook vulnerabilities security xss)
[Discover] java.net: Handling Java Web Application Input, Part 2 http://today.java.net/pub/a/today/2005/09/20/handling-web-app-input.html (programming java security validation)
[Discover] A Corsaire White Paper: A Modular Approach to Data Validation in Web Applications http://72.14.253.104/search?q=cache:fkbCc7_IoaMJ:research.corsaire.com/whitepapers/060116-a-modular- ... (xss)
[Discover] Web Browser Security http://209.85.165.104/search?q=cache:oUjDJbDTf0wJ:www.cs.washington.edu/homes/creis/talks/cse490k-br ... (xss)
[Discover] Cross-Site Scripting http://209.85.165.104/search?q=cache:ZRKB-flKRRsJ:www.spidynamics.com/whitepapers/SPIcross-sitescrip ... (xss)
[Discover] Raible Designs | Java Web Frameworks and XSS http://raibledesigns.com/rd/entry/java_web_frameworks_and_xss (frameworks xss java spring)
[Discover] Greg Murray's Blog: Preventing Cross Site Scripting Attacks http://weblogs.java.net/blog/gmurray71/archive/2006/09/preventing_cros.html (security javascript xss java)
[Discover] What is XSS? | XSSed.com http://www.xssed.com/xssinfo#Avoiding_XSS_vulnerabilities (xss)
[Discover] Wordpress ZeroDay Vulnerability Roundhouse Kick and why I nearly wrote the first Wordpress Blog ... http://mybeni.rootzilla.de/mybeNi/2007/wordpress_zeroday_vulnerability_roundhouse_kick_and_why_i_nea ... (security wordpress vulnerability upgrade)
[Discover] CWE - CWE Java Language Slice (Draft 7) http://cwe.mitre.org/data/slices/lang_java.html (java xss)
[Discover] Fun and Games with PDF http://download.watchfire.com/pdfdemo/index.htm (pci xss)
[Discover] 0x000000 ◊ The Hacker Webzine http://www.0x000000.com/ (research blog programming articles)
[Discover] Google Online Security Blog http://googleonlinesecurity.blogspot.com/ (google blog malware phishing)
[Discover] Security Fix - Brian Krebs on Computer and Internet Security - (washingtonpost.com) http://blogs.washingtonpost.com/securityfix/2006/01/account_hijacki.html (security xss javascript hacking)
[Discover] Unicode code converter http://rishida.net/scripts/uniview/conversion (unicode tools encoding sweet)
[Discover] Jeremiah Grossman: I know where you've been http://jeremiahgrossman.blogspot.com/2006/08/i-know-where-youve-been.html (css javascript security bro)
[Discover] The NoScript Firefox extension http://noscript.net/ (javascript plugin firefox addons)
[Discover] Basic XSS injection - EliteHackers.info Discussion Forums http://elitehackers.info/forums/showthread.php?t=5379 (pci xss)
[Discover] Re: J2EE Application Security Code Review http://osdir.com/ml/security.web-applications/2005-10/msg00191.html (xss)
[Discover] Cross Site Scripting Could Make You Lose Your Cookies - SitePoint PHP Blog http://www.sitepoint.com/blog-post-view.php?id=281643 (crosssitescripting php tutorial security)
[Discover] QuarkRuby: Ruby on Rails Security Guide http://www.quarkruby.com/2007/9/20/ruby-on-rails-security-guide (ruby rubyonrails security authentication)
[Discover] Zend Filter http://framework.zend.com/manual/en/zend.filter.html (php http filter data)
[Discover] PortSwigger.net - web application security http://www.portswigger.net/proxy/ (security tools network pentest)
[Discover] XSS (Cross Site Scripting) Cheat Sheet http://ha.ckers.org/xss.html (security javascript cheatsheet hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (php security library filter)
[Discover] XSSed - XSS (cross-site scripting) information and vulnerable websites archive http://www.xssed.com/ (security xss hacking javascript)
[Discover] http://www.cgisecurity.com/articles/xss-faq.shtml http://www.cgisecurity.com/articles/xss-faq.shtml (javascript faq xss tutorials)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/index.php (php scanner sql security)
[Discover] Pixy: XSS and SQLI Scanner for PHP http://pixybox.seclab.tuwien.ac.at/pixy/webinterface.php (php security sql scanner)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] Businessinfo web security applications & experiments http://businessinfo.co.uk/ (javascript development security xss)
[Discover] Web Application Penetration Testing http://www.cgisecurity.com/pen-test/?ref=2 (bruteforce injection sql pentest)
[Discover] Point Blank Security - Cross Site Scripting Blacklist #1 http://www.pointblanksecurity.com/xss/ (security xss)
[Discover] XSSDB http://www.gnucitizen.org/xssdb/ (security reference pentest xss)
[Discover] BlogSecurity » WordPress Scanner http://blogsecurity.net/wordpress/tools/wp-scanner/ (wordpress security blog tools)
[Discover] Cross Site Scripting - OWASP http://www.owasp.org/index.php/Cross_Site_Scripting (security xss owasp javascri)
[Discover] Web Application Security - Joe Walker's Blog http://getahead.org/blog/joe/2007/10/29/web_application_security.html (javascript security ajax xss)
[Discover] ha.ckers.org web application security lab - Archive » Cross Site Printing http://ha.ckers.org/blog/20080108/cross-site-printing/ (security xss printing javascript)
[Discover] Don’t serve JSON as text/html http://jibbering.com/blog/?p=514 (javascript exploit security json)
[Discover] Mellow Morning » Introducing a cross site ajax plugin for Prototype http://www.mellowmorning.com/2007/10/25/introducing-a-cross-site-ajax-plugin-for-prototype/ (javascript prototype library programming)
[Discover] Comet Daily » Blog Archive » Cross Site Scripting Joy http://cometdaily.com/2007/12/04/cross-site-scripting-joy/ (javascript crossdomain ajax articles)
[Discover] John Resig - Cross-Site XMLHttpRequest http://ejohn.org/blog/cross-site-xmlhttprequest/ (ajax javascript security xmlhttprequest)
[Discover] Category:OWASP CAL9000 Project - OWASP http://www.owasp.org/index.php/Category:OWASP_CAL9000_Project (security testing opensource hacking)
[Discover] Class: PHP Input Filter (sql injection, xss, inputfilter, input filter) - PHP Classes http://www.phpclasses.org/browse/package/2189.html (php security opensource filtering)
[Discover] DOM Based Cross Site Scripting http://www.webappsec.org/projects/articles/071105.html (security xss javascript dom)
[Discover] Five common Web application vulnerabilities http://www.securityfocus.com/infocus/1864 (penetration security testing network)
[Discover] Wapiti - Web application security auditor http://wapiti.sourceforge.net/ (testing python opensource programming)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies (Internet Explorer - DHTML) http://msdn.microsoft.com/workshop/author/dhtml/httponly_cookies.asp (http microsoft cookie security)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > The XSS ... http://www.informit.com/articles/article.asp?p=603037&rl=1 (security xss programming php)
[Discover] Category:OWASP Fuzzing Code Database - OWASP http://www.owasp.org/index.php/Category:OWASP_Fuzzing_Code_Database (directory sql xss owasp)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (security php xss form)
[Discover] sklar.com : PHP and the OWASP Top Ten Security Vulnerabilities http://www.sklar.com/page/article/owasp-top-ten (php security programming authentication)
[Discover] Chris Shiflett: Character Encoding and XSS http://shiflett.org/blog/2007/may/character-encoding-and-xss (php encoding security xss)
[Discover] HTML Purifier http://hp.jpsband.org/ (security programming php html)
[Discover] php security by example (flash demo) http://brainbulb.com/talks/php-security-by-example.swf (php security programming howto)
[Discover] A List Apart: Articles: Community Creators, Secure Your Code! http://www.alistapart.com/articles/secureyourcode (security javascript xss css)
[Discover] evan_tech -- myspace worm http://www.livejournal.com/community/evan_tech/150019.html (javascript security hacks scripting)
[Discover] bindshell - the cross-site scripting virus whitepaper http://www.bindshell.net/papers/xssv.html (security javascript virus xss)
[Discover] InformIT: XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > http://www.informit.com/articles/article.aspx?p=603037&seqNum=1 (pentest xss)
[Discover] Syngress Publishing - Cross Site Scripting Attacks: XSS Exploits and Defense http://www.syngress.com/catalog/?pid=4360 (development security xss)
[Discover] What XSS isn't http://neosmart.net/blog/archives/194 (security javascript xss exploits)
[Discover] Chris Shiflett: Myspace CSRF and XSS Worm (Samy) http://shiflett.org/archive/158 (javascript security xss article)
[Discover] SourceForge.net: XSS-Proxy http://sourceforge.net/projects/xss-proxy (security hacking xss tool)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] Real World XSS - Introduction http://sandsprite.com/Sleuth/papers/RealWorld_XSS_1.html (security xss hack toread)
[Discover] My Greasemonkey Scripts http://www.whiteacid.org/greasemonkey/#xss_assistant (security webapp tool tools)
[Discover] Cross Site Scripting Info http://httpd.apache.org/info/css-security/ (xss apache security)
[Discover] Remote Scripting with IFRAME http://developer.apple.com/internet/webcontent/iframe.html (javascript iframe html programming)
[Discover] Testing for Incubated Vulnerability - OWASP http://www.owasp.org/index.php/Testing_for_Incubated_Vulnerability (xss)
[Discover] OWASP http://www.owasp.org/ (security development architecture community)
[Discover] XSS, Cookies, and Session ID Authentication – Three Ingredients for a Successful Hack > Using ( ... http://www.informit.com/articles/article.asp?p=603037&seqNum=2&rl=1 (authentication hack session id)
[Discover] Mitigating Cross-site Scripting With HTTP-only Cookies http://msdn2.microsoft.com/en-us/library/ms533046.aspx (security javascript http xss)
[Discover] XSS (Cross Site Scripting) Cheat Sheet http://ha.ckers.org/xss.html (security javascript cheatsheet hacking)
[Discover] HTML Purifier - Filter your HTML the standards-compliant way! http://htmlpurifier.org/ (php security library filter)
[Discover] Chris Shiflett: Foiling Cross-Site Attacks http://shiflett.org/articles/foiling-cross-site-attacks (security php xss form)
[Discover] Sylvan von Stuppe: Eradicate XSS Once and for All http://sylvanvonstuppe.blogspot.com/2006/11/eradicate-xss-once-and-for-all.html (web.security.best.practices web.security web.secure.programming web.app.security)
[Discover] Web Security With Ingress Filtering - igvita.com http://www.igvita.com/blog/2007/04/27/web-security-with-ingress-filtering/ (security rubyonrails ruby rails)
[Discover] Whitepapers - www.technicalinfo.net http://www.technicalinfo.net/papers/CSS.html (tutorial javascript security scripting)
[Discover] Google GMail E-mail Hijack Technique | GNUCITIZEN http://www.gnucitizen.org/blog/google-gmail-e-mail-hijack-technique/ (google exploit email security)
[Discover] Slashdot | Yahoo! XSS Flaw Endangers its Users http://it.slashdot.org/it/07/06/15/0528212.shtml (xss vulnerability yahoo)
[Discover] Home : The Official Microsoft ASP.NET 2.0 Site : English http://www.asp.net/faq/RequestValidation.aspx (.net asp.net http security)
[Discover] Dark Reading - Desktop Security - CSRF Vulnerability: A 'Sleeping Giant' - Security News Analysis http://www.darkreading.com/document.asp?doc_id=107651&WT.svl=news1_2 (web.security.best.practices web.attacks web.security xsrf)
[Discover] Technical explanation of myspace worm http://namb.la/popular/tech.html (security javascript hack myspace)
[Discover] 2.0.0 Released - News - HTML Purifier http://htmlpurifier.org/news/2.0.0-released.html (html security filter php)
[Discover] Aaron Johnson: Cross site scripting: removing meta-characters from user-supplied data in CGI ... http://cephas.net/blog/2003/10/31/cross_site_scripting_removing_metacharacters_from_usersupplied_dat ... (websecurity java security xss)
[Discover] Dinis Cruz Blog » Blog Archive » An example of a flawed XSS BlackList filter http://blogs.owasp.org/diniscruz/2007/01/23/an-example-of-a-flawed-xss-blacklist-filter/ (web.security web.app.security security web.attacks)
[Discover] Basic XSS Tutorial - EliteHackers.info Discussion Forums http://www.elitehackers.info/forums/showthread.php?p=52491 (pci xss)
[Discover] The Art of Software Security Assessment » Same-Origin Policy Part 1: Why we’re stuck with ... http://taossa.com/index.php/2007/02/08/same-origin-policy/#more-61 (xsrf security xss same.origin.policy)
[Discover] A type-based solution to the "strings problem": a fitting end to XSS and SQL-injection holes? http://blog.moertel.com/articles/2006/10/18/a-type-based-solution-to-the-strings-problem (security haskell programming types)
[Discover] OWASP Stinger Project - OWASP http://www.owasp.org/index.php/OWASP_Stinger_Project (websecurity validation owasp sanitizing)
[Discover] Cross-site request forgery - Wikipedia, the free encyclopedia http://en.wikipedia.org/wiki/Cross-site_request_forgery (csrf security programming hacking)
[Discover] Demonstrating the Consequences of Cross Site Scripting (XSS) Vulnerabilities - O'Reilly ONLamp Blog http://www.oreillynet.com/onlamp/blog/2006/12/demonstrating_the_consequences.html (security xss scripting cross)
[Discover] Google Online Security Blog: Automating web application security testing http://googleonlinesecurity.blogspot.com/2007/07/automating-web-application-security.html (security testing xss google)
[Discover] http://svn.techno-weenie.net/projects/plugins/white_list/README http://svn.techno-weenie.net/projects/plugins/white_list/README (rails html helper rubyonrails)
[Discover] 23C3: Subverting AJAX http://events.ccc.de/congress/2006/Fahrplan/events/1602.en.html (ajax security javascript hack)
[Discover] SEO Egghead » Blog Archive » Auditing for HTML Tainting http://www.seoegghead.com/blog/black-hat-seo/auditing-for-html-tainting-p43.html (html security xss hacking)
[Discover] HTML Sanitization [Universal Feed Parser] http://www.feedparser.org/docs/html-sanitization.html (security rss html javascript)
[Discover] got? :ruby (Farooq Ali) http://www.jroller.com/abstractScope/entry/xss_facebook (facebook vulnerabilities security xss)
[Discover] java.net: Handling Java Web Application Input, Part 2 http://today.java.net/pub/a/today/2005/09/20/handling-web-app-input.html (programming java security validation)
[Discover] A Corsaire White Paper: A Modular Approach to Data Validation in Web Applications http://72.14.253.104/search?q=cache:fkbCc7_IoaMJ:research.corsaire.com/whitepapers/060116-a-modular- ... (xss)
[Discover] Web Browser Security http://209.85.165.104/search?q=cache:oUjDJbDTf0wJ:www.cs.washington.edu/homes/creis/talks/cse490k-br ... (xss)
[Discover] Cross-Site Scripting http://209.85.165.104/search?q=cache:ZRKB-flKRRsJ:www.spidynamics.com/whitepapers/SPIcross-sitescrip ... (xss)
[Discover] Raible Designs | Java Web Frameworks and XSS http://raibledesigns.com/rd/entry/java_web_frameworks_and_xss (frameworks xss java spring)
[Discover] Greg Murray's Blog: Preventing Cross Site Scripting Attacks http://weblogs.java.net/blog/gmurray71/archive/2006/09/preventing_cros.html (security javascript xss java)
[Discover] What is XSS? | XSSed.com http://www.xssed.com/xssinfo#Avoiding_XSS_vulnerabilities (xss)
[Discover] Wordpress ZeroDay Vulnerability Roundhouse Kick and why I nearly wrote the first Wordpress Blog ... http://mybeni.rootzilla.de/mybeNi/2007/wordpress_zeroday_vulnerability_roundhouse_kick_and_why_i_nea ... (security wordpress vulnerability upgrade)
[Discover] CWE - CWE Java Language Slice (Draft 7) http://cwe.mitre.org/data/slices/lang_java.html (java xss)
[Discover] Fun and Games with PDF http://download.watchfire.com/pdfdemo/index.htm (pci xss)
[Discover] 0x000000 ◊ The Hacker Webzine http://www.0x000000.com/ (research blog programming articles)
[Discover] Google Online Security Blog http://googleonlinesecurity.blogspot.com/ (google blog malware phishing)
[Discover] Security Fix - Brian Krebs on Computer and Internet Security - (washingtonpost.com) http://blogs.washingtonpost.com/securityfix/2006/01/account_hijacki.html (security xss javascript hacking)
[Discover] Unicode code converter http://rishida.net/scripts/uniview/conversion (unicode tools encoding sweet)
[Discover] Jeremiah Grossman: I know where you've been http://jeremiahgrossman.blogspot.com/2006/08/i-know-where-youve-been.html (css javascript security bro)
[Discover] The NoScript Firefox extension http://noscript.net/ (javascript plugin firefox addons)
[Discover] Basic XSS injection - EliteHackers.info Discussion Forums http://elitehackers.info/forums/showthread.php?t=5379 (pci xss)
[Discover] Re: J2EE Application Security Code Review http://osdir.com/ml/security.web-applications/2005-10/msg00191.html (xss)
[Discover] Cross Site Scripting Could Make You Lose Your Cookies - SitePoint PHP Blog http://www.sitepoint.com/blog-post-view.php?id=281643 (crosssitescripting php tutorial security)
[Discover] QuarkRuby: Ruby on Rails Security Guide http://www.quarkruby.com/2007/9/20/ruby-on-rails-security-guide (ruby rubyonrails security authentication)
[Discover] Zend Filter http://framework.zend.com/manual/en/zend.filter.html (php http filter data)
[Discover] PortSwigger.net - web application security http://www.portswigger.net/proxy/ (security tools network pentest)