Mike's Security Cabinet

A place to discuss application security and related topics.

Tuesday, March 6, 2012

Year of Security for Java by John Melton

John Melton wrote some wonderful stuff about Java security

Year of Security for Java – Week 1 - Session Fixation Prevention

Year of Security for Java – Week 2 – Error Handling in web.xml

Year of Security for Java – Week 3 – Session Cookie Secure Flag

Year of Security for Java – Week 4 – Session Cookie HttpOnly Flag

Year of Security for Java – Week 5 – Clickjacking Prevention

Year of Security for Java – Week 6 – CSRF Prevention in Java

Year of Security for Java – Week 7 – Content Security Policy

Year of Security for Java – Week 8 – HTTP Strict Transport Security

Year of Security for Java – Week 9 – X-Frame – Options

Posted by michael xin at 6:37 AM

No comments:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments (Atom)

About Me

michael xin
CISSP, Application security engineer with interest in penetration testing, security application development, mobile security.
View my complete profile

Blog Archive

  • ►  2013 (9)
    • ►  March (3)
    • ►  February (6)
  • ▼  2012 (25)
    • ►  October (1)
    • ►  August (1)
    • ►  June (1)
    • ►  May (4)
    • ►  April (3)
    • ▼  March (9)
      • Set up your environment for security testing
      • Penetration Testing Execution Standard
      • CISSP
      • Some links for log4net
      • Year of Security for Java by John Melton
      • OWASP Top 10
      • Hide some server response headers
      • Agile and security
      • RSA 2012 #sophospuzzle
    • ►  February (6)
  • ►  2011 (4)
    • ►  November (2)
    • ►  April (2)
  • ►  2010 (23)
    • ►  August (1)
    • ►  July (6)
    • ►  May (6)
    • ►  March (1)
    • ►  February (7)
    • ►  January (2)
Simple theme. Powered by Blogger.