http://share.foxmarks.com/folder/rss/iHOdcVSRpW articoli,siti,blog sulla sicurezza (Bookmarks shared by chrisvoo) http://www.anonymizer.com/ http://www.anonymizer.com/ http://www.proxyblind.org/free.shtml http://www.proxyblind.org/free.shtml http://xing.s22.xrea.com/cgi-bin/check_env/prxjdg.cgi http://xing.s22.xrea.com/cgi-bin/check_env/prxjdg.cgi http://www.aliveproxy.com/socks5-list/ http://www.aliveproxy.com/socks5-list/ http://www.echolink.org/proxylist.jsp? http://www.echolink.org/proxylist.jsp? http://www.publicproxyservers.com/page1.html http://www.publicproxyservers.com/page1.html http://www.megaproxy.com/ http://www.megaproxy.com/ Megaproxy® offers secure anonymous web surfing proxy service for online anonymity and Internet privacy. Surf anonymously and privately with our fast, encrypted Web SSL VPN service http://www.torrify.com/ http://www.torrify.com/ Torpark is a free program for windows which allows you to surf the internet anonymously. It requires no installation, leaves no track, is small, portable, and costs nothing. http://unblockall.net/ http://unblockall.net/ Unblock Myspace or any other network from work, school, or anywhere else! Myspace Proxy, Unblock Myspace, Unblock Bebo, Bebo Proxy, Unblock Facebook, Facebook Proxy, Unblock Xanga, Xanga Proxy. Just use our Unblocker. https://addons.mozilla.org/en-US/firefox/addon/2464 https://addons.mozilla.org/en-US/firefox/addon/2464 http://hidemyass.com/ http://hidemyass.com/ http://bypass-rules.info/ http://bypass-rules.info/ http://www.unfiltersites.com/ http://www.unfiltersites.com/ http://www.goproxing.biz/ http://www.goproxing.biz/ http://fire-proxy.com/ http://fire-proxy.com/ http://www.rapidcloak.com/ http://www.rapidcloak.com/ http://www.go-fish.info/ http://www.go-fish.info/ http://www.nolimitbrowsing.com/ http://www.nolimitbrowsing.com/ http://www.theaccess.info/ http://www.theaccess.info/ http://truecrypt.sourceforge.net/ http://truecrypt.sourceforge.net/ http://www.scherrer.cc/crypt/ http://www.scherrer.cc/crypt/ http://www.liceofoscarini.it/studenti/crittografia/index.html http://www.liceofoscarini.it/studenti/crittografia/index.html http://www.pazuzu.it/tritemio/ http://www.pazuzu.it/tritemio/ http://www.infoanarchy.org/wiki/wiki.pl?Steganography http://www.infoanarchy.org/wiki/wiki.pl?Steganography http://world.std.com/~reinhold/diceware.html http://world.std.com/~reinhold/diceware.html http://freshmeat.net/projects/steghide http://freshmeat.net/projects/steghide http://www.redpill.co.za/freeware.htm http://www.redpill.co.za/freeware.htm http://www.donationcoder.com/Software/Other/fSekrit/ http://www.donationcoder.com/Software/Other/fSekrit/ http://exploit.blogosfere.it/2006/07/codificare_i_po.html http://exploit.blogosfere.it/2006/07/codificare_i_po.html http://www.freenigma.com/ http://www.freenigma.com/ http://linux01.gwdg.de/~alatham/stego.html http://linux01.gwdg.de/~alatham/stego.html steganography - cryptographic hiding of data in jpeg files http://csrc.nist.gov/CryptoToolkit/ http://csrc.nist.gov/CryptoToolkit/ http://ha.ckers.org/hashmaster/ http://ha.ckers.org/hashmaster/ http://www.petitcolas.net/fabien/steganography/mp3stego/ http://www.petitcolas.net/fabien/steganography/mp3stego/ http://www.viciao2k3.net/services/cryptimg/ http://www.viciao2k3.net/services/cryptimg/ Oculta mensajes en imagenes http://www.outguess.org/download.php http://www.outguess.org/download.php OutGuess is a universal steganographic tool that allows the insertion of hidden information into the redundant bits of data sources. It provides plausible deniability by allowing the embedding of multiple data sets. http://isole.ecn.org/kriptonite/ http://isole.ecn.org/kriptonite/ http://wwwrn.inf.tu-dresden.de/~westfeld/f5.html http://wwwrn.inf.tu-dresden.de/~westfeld/f5.html http://www.fqa.com/stego_com/ http://www.fqa.com/stego_com/ Online utility hides and recovers encrypted data in GIF files. http://www.thetechtray.net/videos/rar/ http://www.thetechtray.net/videos/rar/ http://www.petitcolas.net/fabien/steganography/ http://www.petitcolas.net/fabien/steganography/ Steganography and Information Hiding http://tor.eff.org/ http://tor.eff.org/ http://freenet.sourceforge.net/ http://freenet.sourceforge.net/ http://www.i2p.net/ http://www.i2p.net/ http://anon.inf.tu-dresden.de/index_en.html http://anon.inf.tu-dresden.de/index_en.html http://sourceforge.net/project/showfiles.php?group_id=82356 http://sourceforge.net/project/showfiles.php?group_id=82356 The world's largest development and download repository of Open Source code and applications http://www.opendns.com/ http://www.opendns.com/ OpenDNS provides a safer, faster and smarter DNS service that is free, with no software to install. http://home.eunet.no/pnordahl/ntpasswd/ http://home.eunet.no/pnordahl/ntpasswd/ http://www.offensive-security.com/movies/vistahack/vistahack.html http://www.offensive-security.com/movies/vistahack/vistahack.html http://www.msn-password-recovery.com/ http://www.msn-password-recovery.com/ http://www.lostpassword.com/index.htm http://www.lostpassword.com/index.htm http://www.insidepro.com/eng/saminside.shtml http://www.insidepro.com/eng/saminside.shtml http://home.eunet.no/~pnordahl/ntpasswd/ http://home.eunet.no/~pnordahl/ntpasswd/ http://www.lifehacker.com/software/windows/how-to-reset-your-windows-xp-password-137980.php http://www.lifehacker.com/software/windows/how-to-reset-your-windows-xp-password-137980.php Computers make us more productive. Yeah, right. Lifehacker recommends the downloads, web sites and shortcuts that save time. Don't live to geek; geek to live. http://www.lifehacker.com/software/passwords/quickly-change-your-windows-password-even-if-youve-lost-your-old-one-179364.php http://www.lifehacker.com/software/passwords/quickly-change-your-windows-password-even-if-youve-lost-your-old-one-179364.php Computers make us more productive. Yeah, right. Lifehacker recommends the downloads, web sites and shortcuts that save time. Don't live to geek; geek to live. http://www.oxid.it/cain.html http://www.oxid.it/cain.html http://fraktali.849pm.com/secur.html http://fraktali.849pm.com/secur.html http://www.grc.com/ http://www.grc.com/ http://www.leader.ru/secure/who.html http://www.leader.ru/secure/who.html http://privacy.net/ http://privacy.net/ http://itfreaks.com/index.html http://itfreaks.com/index.html http://packetstormsecurity.nl/sniffers/buttsniffer/ http://packetstormsecurity.nl/sniffers/buttsniffer/ http://www.au.sorbs.net/ http://www.au.sorbs.net/ http://www.spiare.com/ http://www.spiare.com/ Polinet S.r.l. -in questo spy shop trovi microspie professionali - trasmettitori ambientali e telefonici,ripetitori, microtrasmettitori, apparecchiature per le bonifiche, per la difesa da intercettazioni telefoniche. http://www.explabs.com/linkscanner/ http://www.explabs.com/linkscanner/ http://www.pcadvisor.co.uk/securityadvisor/ http://www.pcadvisor.co.uk/securityadvisor/ Expert PC help and advice including news, hardware reviews, forums, buying advice and software downloads from PC Advisor http://ha.ckers.org/blog/20060823/detecting-firefox-extentions/ http://ha.ckers.org/blog/20060823/detecting-firefox-extentions/ web application security blog http://www.antionline.com/ http://www.antionline.com/ AntiOnline is your resource for computer security information, hacker, phreaker, snooper, virus and cracker info, security news, hot fixes, patches and IP locator tools. http://www.scalabium.com/showpw.htm http://www.scalabium.com/showpw.htm SMApplications, written by Mike Shkolnik, Mike Shkolnik, mike shkolnik, mshkolnik http://www.windowsecurity.com/articles/Web-Server-Defacements-Part3.html http://www.windowsecurity.com/articles/Web-Server-Defacements-Part3.html We shall now actually deface the web server’s web page, and pull off the hack as it were. Furthermore we will peek under the hood, and look at the packets to see just what transpired so that you might recognize it in the future. http://www.gnucitizen.org/ http://www.gnucitizen.org/ http://www.phenoelit.de/dpl/dpl.html http://www.phenoelit.de/dpl/dpl.html http://www.isecom.org/ http://www.isecom.org/ http://www.clusit.it/ http://www.clusit.it/ CLUSIT - Associazione Italiana per la Sicurezza Informatica http://www.tstf.net/ http://www.tstf.net/ http://www.mediaservice.net/ http://www.mediaservice.net/ https://wiki.mrmcd101b.metarheinmain.de/w/Main_Page https://wiki.mrmcd101b.metarheinmain.de/w/Main_Page http://www.hakin9.org/it/ http://www.hakin9.org/it/ http://e-privacy.firenze.linux.it/pws/ http://e-privacy.firenze.linux.it/pws/ http://www.adventuresinsecurity.com/SCourses.html http://www.adventuresinsecurity.com/SCourses.html http://www.offensivecomputing.net/ http://www.offensivecomputing.net/ http://www.securityfocus.com/infocus/1879/1 http://www.securityfocus.com/infocus/1879/1 This article looks at some of the methods, tools and tricks to dissect web 2.0 applications (including Ajax) and discover security holes using Firefox and its plugins. http://www.net-security.org/article.php?id=949 http://www.net-security.org/article.php?id=949 Help Net Security is a daily updated security related site. We offer information on the latest advisories, viruses, press releases, papers, etc. The site also has a large download section that helps you get protected, a well-stocked bookstore, and the largest Security Database of security products. http://pluto.topnet.it/files/journal/pj0106/tcfs.html http://pluto.topnet.it/files/journal/pj0106/tcfs.html http://tldp.org/HOWTO/Disk-Encryption-HOWTO/ http://tldp.org/HOWTO/Disk-Encryption-HOWTO/ http://www.kyuzz.org/antirez/overwrite.html http://www.kyuzz.org/antirez/overwrite.html http://www.milw0rm.com/cracker/info.php http://www.milw0rm.com/cracker/info.php http://www.tomshw.it/business.php?guide=200606301 http://www.tomshw.it/business.php?guide=200606301 THG Italia, In questo articolo abbiamo raccolto e risposto alle domande più ricorrenti riguardo la sicurezza delle reti wireless. http://www.plain-text.info/ http://www.plain-text.info/ http://www.dailywireless.com/features/secure-wireless-lan-021507/ http://www.dailywireless.com/features/secure-wireless-lan-021507/ Tools for encryption, identity, management, location and more. http://www.suspectfile.com/ http://www.suspectfile.com/ SuspectFile: il sito studiato per l'invio di file sospetti (trojan, virus, worm). Noi li identifichiamo e li facciamo riconoscere anche dal tuo antivirus. http://www.marcoc.it/ioi/Privacy_ed_anonimato_in_rete_20_gif/sld001.htm http://www.marcoc.it/ioi/Privacy_ed_anonimato_in_rete_20_gif/sld001.htm http://www.securitywireless.info/index.html http://www.securitywireless.info/index.html Il primo portale in Italia e nel mondo sulla (in)sicurezza del Wireless http://www.securiteam.com/tools/ http://www.securiteam.com/tools/ Beyond Security will help you expose your security holes and will show you what the bad guys already know about your hosts and network. Use our Automated Scanning service to perform a full security audit of your site, and find the latest security news and tools on Beyond Security's SecuriTeam™ web site. http://www.security-database.com/toolswatch/IT-Security-and-Auditing-Softwares.html http://www.security-database.com/toolswatch/IT-Security-and-Auditing-Softwares.html Since we have started IT security auditing and assessment, we have tested and used tons of tools, utilities and softwares. A lot of them were (...) http://www.symantec.com/business/security_response/removaltools.jsp http://www.symantec.com/business/security_response/removaltools.jsp Symantec's Security Response Removal Tools Page http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048645.html http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048645.html [Full-disclosure] Hotmail/MSN Cross Site Scripting Vulnerability http://enigmail.mozdev.org/ http://enigmail.mozdev.org/ http://perso.crans.org/~raffo/aem/index.php http://perso.crans.org/~raffo/aem/index.php http://www.yubico.com/home/index/ http://www.yubico.com/home/index/ Yubico, The makers of the YubiKey http://it.wikipedia.org/wiki/Fork_bomb http://it.wikipedia.org/wiki/Fork_bomb http://www.forensics-intl.com/def2.html http://www.forensics-intl.com/def2.html http://www.sitoflash.it/costabile/web/index.cfm?area=2 http://www.sitoflash.it/costabile/web/index.cfm?area=2 http://cybercrimes.net/ http://cybercrimes.net/ http://www.lpcforensic.it/ http://www.lpcforensic.it/ http://browserspy.dk/css-exploit.php http://browserspy.dk/css-exploit.php http://hping.org/ http://hping.org/ http://www.glocksoft.com/trojan_list/Cain_&_Abel.htm http://www.glocksoft.com/trojan_list/Cain_&_Abel.htm http://news.netcraft.com/ http://news.netcraft.com/ http://www.devpro.it/md5/ http://www.devpro.it/md5/ Simple program with a recoursive function that try to find the source of a md5 32 chars hashed string. http://nonadmin.editme.com/DropMyRights http://nonadmin.editme.com/DropMyRights http://www.amustsoft.com/econdom/ http://www.amustsoft.com/econdom/ Free AMUST eCondom security utility for safe Internet browsing eliminates the risks by allowing you to run Internet Explorer in a SafeBrowse mode. http://sourceforge.net/projects/sing/ http://sourceforge.net/projects/sing/ The world's largest development and download repository of Open Source code and applications http://www.eeye.com/html/resources/downloads/index.html http://www.eeye.com/html/resources/downloads/index.html eEye - Network security & vulnerability management software including vulnerability assessment, intrusion prevention & enterprise security solutions. http://articles.techrepublic.com.com/5100-1035_11-5319940.html http://articles.techrepublic.com.com/5100-1035_11-5319940.html B2B transactions enhance business alliances, but security for the data sharing must be robust. Learn how SSH tunneling can add certificate-based security to remote command-line interface with a server. http://www.sleuthkit.org/index.php http://www.sleuthkit.org/index.php http://www.slavasoft.com/fsum/index.htm http://www.slavasoft.com/fsum/index.htm http://www.cdc.informatik.tu-darmstadt.de/aircrack-ptw/ http://www.cdc.informatik.tu-darmstadt.de/aircrack-ptw/ Flexiprovider http://www.jumperz.net/index.php http://www.jumperz.net/index.php http://www.truecrypt.org/ http://www.truecrypt.org/ TrueCrypt is free open-source disk encryption software for Windows and Linux. Categories: data encryption, security software, privacy. http://www.heidi.ie/eraser/default.php http://www.heidi.ie/eraser/default.php http://www.sysinternals.com/Utilities/PsExec.html http://www.sysinternals.com/Utilities/PsExec.html http://www.ripit4me.org/ http://www.ripit4me.org/ The official website of RipIt4Me, a freeware utility that helps you backup your copy protected DVDs http://www.sandboxie.com/ http://www.sandboxie.com/ http://www.infosecwriters.com/texts.php?op=display&id=133 http://www.infosecwriters.com/texts.php?op=display&id=133 This output places all results for a single host on a single line, making it easier to use with other command line tools and scripting. This format is not well documented and therefore not well understood. http://www.packetfence.org/ http://www.packetfence.org/ packetfence.org http://www.secway.fr/us/products/simplite_msn/getsimp.php http://www.secway.fr/us/products/simplite_msn/getsimp.php Secway, IT security, encryption products - MSN Messenger encryption and security software - Encrypt and secure your MSN Messenger IM conversations or chats http://www.securitycompass.com/ http://www.securitycompass.com/ Application Security, Application Security Toronto, Application Security Canada, Application Security Training, Application Security Consulting, Application Security Professional Services, security training, hacking training, exploiting Training, Canada imparts Training that includes, certification and courses in IT Security, information technology security, security engineering, Threat Analysis, Product Security, Code Review, Secure Coding Practices, Network Security, Oracle Security, Sun Security, Java Security, Cisco Security, IBM Security, Application Security Trianing, Application Security Hacking, Application Security Toronto, Application Security USA, Buffer Overflow Attacks, Hack Notes - Network Security, Hacking Exposed - Web Applications, Windows XP Professional Security, Writing Security Tools and Exploits, Reverse Engineering Conference, ReCon, HackInTheBox 2005 in Malaysia, Infosec Conference, CSI NetSec, DallasCon, ToorCon, Freenix http://www.irnis.net/free.shtml http://www.irnis.net/free.shtml eXpress CheckSum Verifier, eXpress CheckSum Calculator, eXpress IP Locator, WinBZip2 utility, WinGZip utility, HitsLog script, PackMail script, AntiAliased Analog Gauge, XTea Encoder for Delphi, NukeLang http://www.portcullis-security.com/16.php http://www.portcullis-security.com/16.php Specialist information security, alerts and managed security services for commercial and governmental organisations http://www.securityfocus.com/bid/36658 http://www.securityfocus.com/bid/36658 SecurityFocus is designed to facilitate discussion on computer security related topics, create computer security awareness, and to provide the Internet's largest and most comprehensive database of computer security knowledge and resources to the public. It also hosts the BUGTRAQ mailing list. http://www.snort.org/ http://www.snort.org/ http://www.bleedingsnort.com/ http://www.bleedingsnort.com/ http://openskills.info/topic.php?ID=63 http://openskills.info/topic.php?ID=63 http://www.ethereal.com/ http://www.ethereal.com/ http://bro-ids.org/ http://bro-ids.org/ http://www.ethicalhacker.net/content/view/16/24/ http://www.ethicalhacker.net/content/view/16/24/ The Ethical Hacker Network - Your educational authority on penetration testing and incident response., Ethical Hacker Network, Articles, Columnists, Essential Wireless Hacking Tools http://www.evilsocket.net/109/arp-poisoning-ovvero-come-avere-il-totale-controllo-della-rete.html http://www.evilsocket.net/109/arp-poisoning-ovvero-come-avere-il-totale-controllo-della-rete.html Non me ne vogliano i colleghi sistemisti ed amministratori di rete se la mia terminologia sarà inesatta o quantomeno imprecisa, ma aimè, sono solo un http://www.shinnai.net/ http://www.shinnai.net/ https://www.ihteam.net/index.php?action=advs https://www.ihteam.net/index.php?action=advs Inclusion Hunter Team è il portale hacking italiano che si pone come intermediario fra utente ed imprenditore http://www.tmcrew.org/privacy/index.htm http://www.tmcrew.org/privacy/index.htm http://freaknet.org/hacklab/ http://freaknet.org/hacklab/ http://www.autistici.org/acklab/ http://www.autistici.org/acklab/ http://www.acklab.net/ http://www.acklab.net/ http://www.catb.org/~esr/faqs/hacker-howto.html http://www.catb.org/~esr/faqs/hacker-howto.html http://www.ondaquadra.org/ http://www.ondaquadra.org/ http://www.s0ftpj.org/bfi http://www.s0ftpj.org/bfi http://www.s0ftpj.org/archive/ikx/index.html http://www.s0ftpj.org/archive/ikx/index.html http://www.opengeeks.it/ http://www.opengeeks.it/ http://www.mooseek.com/software/hacking/portali.htm http://www.mooseek.com/software/hacking/portali.htm http://www.s0ftpj.org/it/spj.html http://www.s0ftpj.org/it/spj.html http://www.s0ftpj.org/archive/systemdown/main.htm http://www.s0ftpj.org/archive/systemdown/main.htm http://www.insidepro.com/eng/index.shtml http://www.insidepro.com/eng/index.shtml http://johnny.ihackstuff.com/ http://johnny.ihackstuff.com/ http://www.hackaday.com/ http://www.hackaday.com/ http://hacks.oreilly.com/ http://hacks.oreilly.com/ http://www.thc.org/ http://www.thc.org/ http://www.thocp.net/reference/hacking/hacking.htm http://www.thocp.net/reference/hacking/hacking.htm http://www.hackingexposed.com/ http://www.hackingexposed.com/ http://www.phaster.com/find_info_net_traffic.shtml http://www.phaster.com/find_info_net_traffic.shtml http://www.tinhat.com/hackers/hacking.html http://www.tinhat.com/hackers/hacking.html http://www.hackerscatalog.com/ http://www.hackerscatalog.com/ http://www.nethack.org/ http://www.nethack.org/ http://www.activewebhost.com/articles/hackers_hacking_your_website.htm http://www.activewebhost.com/articles/hackers_hacking_your_website.htm http://www.hackinglinuxexposed.com/ http://www.hackinglinuxexposed.com/ http://is-it-true.org/nt/books/btips29.shtml http://is-it-true.org/nt/books/btips29.shtml http://www.linuxsecurity.com/resource_files/hack-resources.html http://www.linuxsecurity.com/resource_files/hack-resources.html http://www.tashian.com/htmlguide/password.html http://www.tashian.com/htmlguide/password.html http://lastbit.com/ http://lastbit.com/ http://www.aerotags.com/products/tlp.php http://www.aerotags.com/products/tlp.php http://cerberus.sourcefire.com/~jeff/papers/Robert_Graham/sniffing-faq.html http://cerberus.sourcefire.com/~jeff/papers/Robert_Graham/sniffing-faq.html http://www.kobayashi.cjb.net/ http://www.kobayashi.cjb.net/ http://www.pwcrack.com/index.shtml http://www.pwcrack.com/index.shtml http://www.wt50.com/ http://www.wt50.com/ http://en.wikipedia.org/wiki/Dns_cache_poisoning http://en.wikipedia.org/wiki/Dns_cache_poisoning http://www.2600.org/ http://www.2600.org/ http://www.nourbani.altervista.org/dos/index.htm http://www.nourbani.altervista.org/dos/index.htm http://www.rrdb.org/ http://www.rrdb.org/ http://www.blackhat.com/ http://www.blackhat.com/ http://www.insecure.org/ http://www.insecure.org/ http://www.cybersyndrome.net/ http://www.cybersyndrome.net/ http://www.hackershomepage.com/ http://www.hackershomepage.com/ http://www.infosyssec.com/ http://www.infosyssec.com/ http://www.cultdeadcow.com/cDc_files/cDc-351/page1.html http://www.cultdeadcow.com/cDc_files/cDc-351/page1.html http://www.bismark.it/ http://www.bismark.it/ http://tutorial.100free.com/ http://tutorial.100free.com/ http://nagmatrix.50webs.com/index.html http://nagmatrix.50webs.com/index.html http://www.s0ftpj.org/bfi/ http://www.s0ftpj.org/bfi/ http://www.insecure.org/nmap/nmap-fingerprinting-article-it/stackf.html http://www.insecure.org/nmap/nmap-fingerprinting-article-it/stackf.html http://www.linuxchix.org/content/courses/security/nmap http://www.linuxchix.org/content/courses/security/nmap http://www.securesphere.net/download/papers/dnsspoof.htm http://www.securesphere.net/download/papers/dnsspoof.htm http://www.hackunited.net/guide.htm http://www.hackunited.net/guide.htm http://www.irongeek.com/ http://www.irongeek.com/ http://www.milw0rm.com/ http://www.milw0rm.com/ http://www.ethicalhacker.net/content/view/41/2/ http://www.ethicalhacker.net/content/view/41/2/ The Ethical Hacker Network - Your educational authority on penetration testing and incident response., Ethical Hacker Network, Features, Book Reviews, Google Hacking: Ten Simple Security Searches That Work http://autistici.org/it/ http://autistici.org/it/ Autistici/Inventati Home Page http://www.hackingvoip.com/index.php http://www.hackingvoip.com/index.php Hacking Exposed VoIP companion website by David Endler and Mark Collier http://www.darknet.org.uk/ http://www.darknet.org.uk/ http://www.netninja.com/papers/ http://www.netninja.com/papers/ http://www.offensive-security.com/metasploit-unleashed/ http://www.offensive-security.com/metasploit-unleashed/ http://www.securitywireless.info/modules.php?op=modload&name=News&file=article&sid=42 http://www.securitywireless.info/modules.php?op=modload&name=News&file=article&sid=42 http://www.securitywireless.info/modules.php?op=modload&name=News&file=article&sid=48 http://www.securitywireless.info/modules.php?op=modload&name=News&file=article&sid=48 http://www.informit.com/articles/article.asp?p=369221&rl=1 http://www.informit.com/articles/article.asp?p=369221&rl=1 http://www.informit.com/articles/article.asp?p=370636 http://www.informit.com/articles/article.asp?p=370636 http://www.sectheory.com/intranet-hacking.htm http://www.sectheory.com/intranet-hacking.htm SecTheory security consulting professional services http://htmlpurifier.org/live/smoketests/xssAttacks.php http://htmlpurifier.org/live/smoketests/xssAttacks.php