Home » Archives for tháng 5 2010
Popular Posts
-
Dưới đấy là danh sách các diễn đàn công nghệ (IT) lớn nhất tại Việt Nam cho phép bạn đăng tin Rao Vặt để quảng cáo sản phẩm, thương hiệu cũn... -
Beautiful 404 Error Pages Cut & Taste Cut & Taste claims that “Someone on the staff is to blame for this! Rest assured, the proper p...
-
YouJoomla Joomla! Club Template Template Name: YouBistro | Live Demo | For Joomla 1.5.x This time we would like to try a new concept. R... -
hotfile.com | megaupload.com | depositfiles.com | rapidshare.com ext: .zip size: 4 1,6 MB Description: "Black & White, a r...
-
Link down: http://www.4shared.com/office/F-uHwS...TU_KY_THU.html
-
Chào các bạn, sau một thời gian tìm kiếm phần mềm gỡ pass file Word-Excel, tui đã tìm được phần mềm này, rất hiệu quả. Gỡ bỏ mật khẩu trên... -
Các máy để bàn và máy chủ sẽ được bảo mật trực tiếp từ trong vi xử lý thay vì dùng các phần mềm chạy trên một hệ điều hành nếu việc hợp tác ...
-
Angels vs Devils (PCGame/ENG/2004) ENG | PC | 2004 | 685MB Genre: Action, Fantasy Shooter This 3D action game will see you pitting the force...
-
Ngày nay, mạng không dây đã trở nên khá phổ biến. Không chỉ ở các tổ chức và doanh nghiệp, mạng không dây còn được triển khai ở phần lớn các...
-
Công nghệ mới từ IBM được thiết kế nhằm ngăn chặn thư rác bằng việc phân biệt vùng nó xuất phát, có thể giúp cho phát hiện các Scam trực tuy...
Ajax Security
17:40 |
Product Description
The Hands-On, Practical Guide to Preventing Ajax-Related Security Vulnerabilities
More and more Web sites are being rewritten as Ajax applications; even traditional desktop software is rapidly moving to the Web via Ajax. But, all too often, this transition is being made with reckless disregard for security. If Ajax applications aren’t designed and coded properly, they can be susceptible to far more dangerous security vulnerabilities than conventional Web or desktop software. Ajax developers desperately need guidance on securing their applications: knowledge that’s been virtually impossible to find, until now.
Ajax Security systematically debunks today’s most dangerous myths about Ajax security, illustrating key points with detailed case studies of actual exploited Ajax vulnerabilities, ranging from MySpace’s Samy worm to MacWorld’s conference code validator. Even more important, it delivers specific, up-to-the-minute recommendations for securing Ajax applications in each major Web programming language and environment, including .NET, Java, PHP, and even Ruby on Rails. You’ll learn how to:
· Mitigate unique risks associated with Ajax, including overly granular Web services, application control flow tampering, and manipulation of program logic
· Write new Ajax code more safely—and identify and fix flaws in existing code
· Prevent emerging Ajax-specific attacks, including JavaScript hijacking and persistent storage theft
· Avoid attacks based on XSS and SQL Injection—including a dangerous SQL Injection variant that can extract an entire backend database with just two requests
· Leverage security built into Ajax frameworks like Prototype, Dojo, and ASP.NET AJAX Extensions—and recognize what you still must implement on your own
· Create more secure “mashup” applications
Ajax Security will be an indispensable resource for developers coding or maintaining Ajax applications; architects and development managers planning or designing new Ajax software, and all software security professionals, from QA specialists to penetration testers.
About the Author
Billy Hoffman is the lead researcher for HP Security Labs of HP Software. At HP, Billy focuses on JavaScript source code analysis, automated discovery of Web application vulnerabilities, and Web crawling technologies. He has worked in the security space since 2001 after he wrote an article on cracking software for 2600, “The Hacker Quarterly,” and learned that people would pay him to be curious. Over the years Billy has worked a variety of projects including reverse engineering file formats, micro-controllers, JavaScript malware, and magstripes. He is the creator of Stripe Snoop, a suite of research tools that captures, modifies, validates, generates, analyzes, and shares data from magstripes. Billy’s work has been featured in Wired, Make magazine, Slashdot, G4TechTV, and in various other journals and Web sites. Billy is a regular presenter at hacker conferences including Toorcon, Shmoocon, Phreaknic, Summercon, and Outerz0ne and is active in the South East hacking scene. Occasionally the suits make him take off the black t-shirt and he speaks at more mainstream security events including RSA, Infosec, AJAXWorld, and Black Hat. Billy graduated from the Georgia Institute of Technology in 2005 with a BS in Computer Science with specializations in networking and embedded systems. He lives in Atlanta with his wife and two tubby and very spoiled cats.
Bryan Sullivan is a software development manager for the Application Security Center division of HP Software. He has been a professional software developer and development manager for over 12 years, with the last five years focused on the Internet security software industry. Prior to HP, Bryan was a security researcher for SPI Dynamics, a leading Web application security company acquired by HP in August 2007.While at SPI, he created the DevInspect product, which analyzes Web applications for security vulnerabilities during development. Bryan is a frequent speaker at industry events, most recently AjaxWorld, Black Hat, and RSA. He was involved in the creation of the Application Vulnerability Description Language (AVDL) and has three patents on security assessment and remediation methodologies pending review. He is a graduate of the Georgia Institute of Technology
with a BS in Applied Mathematics. When he’s not trying to break the Internet, Bryan spends as much time as he can on the golf links. If any Augusta National members are reading this, Bryan would be exceedingly happy to tell you everything he knows about Ajax security over a round or two.
Download here:
DIGITAL CHARACTER PAINTING USING PHOTOSHOP CS3
21:05 |
Product Description
Digital Character Painting Using Photoshop CS3 is a brilliantly illustrated, full-color book that combines both the fundamentals of character design and the skills of digital painting. Completely updated using Photoshop CS3 as the primary tool, the book details how to create characters that elicit specific emotions and how to beautifully render those characters by applying conventional painting skills to digital tools. Written for both the seasoned professional and aspiring artist alike, Digital Character Painting Using Photoshop CS3 explores the key principles of design and reveals how to enhance traditional skills and apply them to digital art for use in games, film, animation, and other commercial productions. Using practical tutorials, the book covers basic skills such as value, edges, color, texturing, and light, and then moves on to teach in-depth techniques on specific features including eyes, face, clothing, hair, and fur. Whatever your skill level, you will discover practical ideas and techniques to apply to your craft and to help you improve and create masterful works of digital art! Features: - Presents a completely updated, beautiful, full color guide to character design and computer art using Photoshop. - Provides practical insights into how to master Photoshop CS3 as a powerful painting tool, including how to customize the brushes to achieve the best possible results. - Focuses on learning artistic skills that can be applied to a variety of 2D and 3D programs, with an emphasis on Photoshop CS3. - Teaches how to combine traditional artistic values with today's graphics software. - Includes a CD-ROM with the figures and files for the tutorials in the book, along with a QuickTime movie showing how a painting is created.
About the Author
Don Seegmiller is a very successful artist, author, and instructor. He has a Bachelor of Fine Arts degree and teaches senior-level illustration, traditional head painting, figure drawing, and digital painting courses at a variety of schools. He worked for six years as art director for Saffire Corporation, is a regular speaker at the game Developers Conference, and was the keynote speaker at the American Association of Medical Illustrators convention in 2003. He is the author of the first edition of this book, the Painter edition, and co-author of Mastering Digital 2D and 3D Art with Les Pardew. His work is also featured in The Painter 6 Wow Book, The Painter 7 Wow Book, Electronic Step-by-Step Design, Spectrum 7, Spectrum 8, and it has also been on display at Wadle Galleries of Santa Fe since 1981.
Download here:
Professional Pen Testing for Web Applications (Hack ebook)
20:44 |
Product Description
There is no such thing as "perfect security" when it comes to keeping all systems intact and functioning properly. Good penetration (pen) testing creates a balance that allows a system to be secure while simultaneously being fully functional. With this book, you'll learn how to become an effective penetrator (i.e., a white hat or ethical hacker) in order to circumvent the security features of a Web application so that those features can be accurately evaluated and adequate security precautions can be put in place.
After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.
What you will learn from this book
* Surveillance techniques that an attacker uses when targeting a system for a strike
* Various types of issues that exist within the modern day web application space
* How to audit web services in order to assess areas of risk and exposure
* How to analyze your results and translate them into documentation that is useful for remediation
* Techniques for pen-testing trials to practice before a live project
Who this book is for
This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.
Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.
What you will learn from this book
* Surveillance techniques that an attacker uses when targeting a system for a strike
* Various types of issues that exist within the modern day web application space
* How to audit web services in order to assess areas of risk and exposure
* How to analyze your results and translate them into documentation that is useful for remediation
* Techniques for pen-testing trials to practice before a live project
Who this book is for
This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.
Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
From the Back Cover
There is no such thing as "perfect security" when it comes to keeping all systems intact and functioning properly. Good penetration (pen) testing creates a balance that allows a system to be secure while simultaneously being fully functional. With this book, you'll learn how to become an effective penetrator (i.e., a white hat or ethical hacker) in order to circumvent the security features of a Web application so that those features can be accurately evaluated and adequate security precautions can be put in place.
After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.
What you will learn from this book
This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.
Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.
What you will learn from this book
- Surveillance techniques that an attacker uses when targeting a system for a strike
- Various types of issues that exist within the modern day web application space
- How to audit web services in order to assess areas of risk and exposure
- How to analyze your results and translate them into documentation that is useful for remediation
- Techniques for pen-testing trials to practice before a live project
This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.
Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
Download here:
HackNotes Web Security Pocket Reference
20:33 |
Introduction
Web applications security and Web security in general are some of the most hottest topics in the InfoSec community. The rise of both vulnerabilities and security products in this IS sector clearly shows the importance of having the Web part of our lives secure. The book I'm taking a look at today is a part of Hack Notes series that carry on with the Hacking Exposed fame.
About the author
Mike Shema is a principle consultant and trainer for Foundstone, Inc. He is co-author of Hacking Exposed Web Application and Anti Hacker Tool Kit. In his professional line of duty, he has performed security assessments of a number of networks and Web applications.
Inside the book
The book is divided into three thematical parts, each containing a large portion of both theoretical, as well as practical web security situations. The first part incorporates introduction into web hacking and penetration methodologies. The topics covered within these chapters are mainly related to reconnaissance testing of applications and web services. Afterwards, in a chapter effectively titled "Critical hacks and defenses", the author traverses trough well known types of attacks including cross site scripting, SQL injection, session attacks and provides information on issues such as input validation, token analysis and XML services. What comes very valuable to the reader, are those numerous tables containing easily browsable info on stuff like Perl Regex, common input validation tests, SQL injections strings and common database defaults.
The second part of the book strives to provide the administrator all the things he/she should be aware while working in a Web environment. For the start, the author covers methods of vulnerability assessment and guides the reader through all the popular web security tools. Three vulnerability scanners (Whisker,Nikto and Nessus) and three assessment tools (Achilles, WebProxy and Curl) are featured in this section. Each of these tools is covered on a couple of pages accompanied with the appropriate screenshots. From the hardening point of view, readers are presented with couple of very useful checklists that focus on the two most popular Web servers around - Apache and Microsoft IIS.
Because of its importance, besides the checklists I mentioned above, Web server security is covered more thoroughly early in the third part of this Hack Notes title. Author shares some more tips on checking the log files and using proxies and load balancers.
Web security consists of two major parts - security of web servers and web applications. The importance of writing secure code can be seen on almost every page of this book, so it was expected that the book's "official content" (the book also hosts two more appendixes and one preview chapter from Hack Notes Network Security) is finished with tips on secure coding.
As with all the books from these series, Hack Notes Web Security also incorporates a satisfactory 30 page reference center located in the center of the book. It includes such topics like input validation tests, HTTP protocol notes, application assessment checklists and search terms that will make Google a valuable addition in the attacker's arsenal :)
I mentioned earlier that there are two appendixes to the book. The first is a 7-bit ASCII reference (containing character, description, decimal, hexadecimal tabs) and the other one is a nice essay on WebGoat. This geeky titled product was created by OWASP (Open Source Web Application Security Project) and provides an easy, hands-on approach for better understanding the security issues related to web applications.
To share my thoughts
If you've read my review of "HackNotes Linux and Unix Security", I should warn you that I'll probably repeat some of my final thoughts on this book. Being a part of Hack Notes series, you'll either love it, or hate it. I'm personally a big fan of these kind of publications as they provide so much valuable information squeezed into a compact reference guide.
Before recommending the book to different type of readers, I would stress out the importance of writing secure code. While checking BugTraq and other security mailing lists, we are mostly stunned in how many web applications are vulnerable to the attacks mentioned in thios book. Even stranger is to see that some very popular products (hint: content management systems) are struck with new vulnerability reports on a monthly basis. I would highly recommend this book to all those programmers who should consider security very seriously. Even if you are familiar with the usual web application security problems, you'll surely be surprised in how many extras this book incorporates. You'll probably find a plenty of new ideas from the quantity of author's practical knowledge on these topics.
The book is written in a way that follows Hack Notes schemes - it covers possible security issues, methods of exploiting them, as well suggestions and hints on the things to do to make the attacker's life as complicated as possible.
To finish the review - the author managed to crawl through almost every web application security corner on the Internet and summarized a great quantity of examples, tips and ideas into an very useful web security reference. Download here:
Web applications security and Web security in general are some of the most hottest topics in the InfoSec community. The rise of both vulnerabilities and security products in this IS sector clearly shows the importance of having the Web part of our lives secure. The book I'm taking a look at today is a part of Hack Notes series that carry on with the Hacking Exposed fame.
About the author
Mike Shema is a principle consultant and trainer for Foundstone, Inc. He is co-author of Hacking Exposed Web Application and Anti Hacker Tool Kit. In his professional line of duty, he has performed security assessments of a number of networks and Web applications.
Inside the book
The book is divided into three thematical parts, each containing a large portion of both theoretical, as well as practical web security situations. The first part incorporates introduction into web hacking and penetration methodologies. The topics covered within these chapters are mainly related to reconnaissance testing of applications and web services. Afterwards, in a chapter effectively titled "Critical hacks and defenses", the author traverses trough well known types of attacks including cross site scripting, SQL injection, session attacks and provides information on issues such as input validation, token analysis and XML services. What comes very valuable to the reader, are those numerous tables containing easily browsable info on stuff like Perl Regex, common input validation tests, SQL injections strings and common database defaults.
The second part of the book strives to provide the administrator all the things he/she should be aware while working in a Web environment. For the start, the author covers methods of vulnerability assessment and guides the reader through all the popular web security tools. Three vulnerability scanners (Whisker,Nikto and Nessus) and three assessment tools (Achilles, WebProxy and Curl) are featured in this section. Each of these tools is covered on a couple of pages accompanied with the appropriate screenshots. From the hardening point of view, readers are presented with couple of very useful checklists that focus on the two most popular Web servers around - Apache and Microsoft IIS.
Because of its importance, besides the checklists I mentioned above, Web server security is covered more thoroughly early in the third part of this Hack Notes title. Author shares some more tips on checking the log files and using proxies and load balancers.
Web security consists of two major parts - security of web servers and web applications. The importance of writing secure code can be seen on almost every page of this book, so it was expected that the book's "official content" (the book also hosts two more appendixes and one preview chapter from Hack Notes Network Security) is finished with tips on secure coding.
As with all the books from these series, Hack Notes Web Security also incorporates a satisfactory 30 page reference center located in the center of the book. It includes such topics like input validation tests, HTTP protocol notes, application assessment checklists and search terms that will make Google a valuable addition in the attacker's arsenal :)
I mentioned earlier that there are two appendixes to the book. The first is a 7-bit ASCII reference (containing character, description, decimal, hexadecimal tabs) and the other one is a nice essay on WebGoat. This geeky titled product was created by OWASP (Open Source Web Application Security Project) and provides an easy, hands-on approach for better understanding the security issues related to web applications.
To share my thoughts
If you've read my review of "HackNotes Linux and Unix Security", I should warn you that I'll probably repeat some of my final thoughts on this book. Being a part of Hack Notes series, you'll either love it, or hate it. I'm personally a big fan of these kind of publications as they provide so much valuable information squeezed into a compact reference guide.
Before recommending the book to different type of readers, I would stress out the importance of writing secure code. While checking BugTraq and other security mailing lists, we are mostly stunned in how many web applications are vulnerable to the attacks mentioned in thios book. Even stranger is to see that some very popular products (hint: content management systems) are struck with new vulnerability reports on a monthly basis. I would highly recommend this book to all those programmers who should consider security very seriously. Even if you are familiar with the usual web application security problems, you'll surely be surprised in how many extras this book incorporates. You'll probably find a plenty of new ideas from the quantity of author's practical knowledge on these topics.
The book is written in a way that follows Hack Notes schemes - it covers possible security issues, methods of exploiting them, as well suggestions and hints on the things to do to make the attacker's life as complicated as possible.
To finish the review - the author managed to crawl through almost every web application security corner on the Internet and summarized a great quantity of examples, tips and ideas into an very useful web security reference. Download here:
Hack Proofing Your Web Applications
20:32 |
Product Description
From the authors of the bestselling Hack Proofing Your Network!
OPEC, Amazon, Yahoo! and E-bay: If these large, well-established and security-conscious web sites have problems, how can anyone be safe? How can any programmer expect to develop web applications that are secure?
Hack Proofing Your Web Applications is the only book specifically written for application developers and webmasters who write programs that are used on web sites. It covers Java applications, XML, ColdFusion, and other database applications. Most hacking books focus on catching the hackers once they've entered the site; this one shows programmers how to design tight code that will deter hackers from the word go.
Comes with up-to-the-minute web based support and a CD-ROM containing source codes and sample testing programs
Unique approach: Unlike most hacking books this one is written for the application developer to help them build less vulnerable programs
OPEC, Amazon, Yahoo! and E-bay: If these large, well-established and security-conscious web sites have problems, how can anyone be safe? How can any programmer expect to develop web applications that are secure?
Hack Proofing Your Web Applications is the only book specifically written for application developers and webmasters who write programs that are used on web sites. It covers Java applications, XML, ColdFusion, and other database applications. Most hacking books focus on catching the hackers once they've entered the site; this one shows programmers how to design tight code that will deter hackers from the word go.
Comes with up-to-the-minute web based support and a CD-ROM containing source codes and sample testing programs
Unique approach: Unlike most hacking books this one is written for the application developer to help them build less vulnerable programs
About the Author
Julie Traxler is a Senior Software Tester for an Internet software company. During her career, Julie has worked for such organizations as DecisionOne, EXE Technologies, and TV Guide. She has held several positions including Project Manager, Business Analyst, and Technical Writer and has specialized in software systems analysis and design. During her tenure at several organizations, Julie has worked to provide a starting point for software quality assurance and has helped to build QA teams and implement testing processes and strategies. The testing plans she has developed include testing for functionality, usability, requirements, acceptance, release, regression, security, integrity, and performance.Jeff Forristal is the Lead Security Developer for Neohapsis, a Chicago-based security solution/consulting firm. Apart from assisting in network security assessments and application security reviews (including source code review), Jeff is the driving force behind Security Alert Consensus, a joint security alert newsletter published on a weekly basis by Neohapsis, Network Computing, and the SANS Institute.
Kevin Ziese is a Computer Scientist at Cisco Systems, Inc. Prior to joining Cisco he was a Senior Scientist and Founder of the Wheelgroup Corporation, which was acquired by Cisco Systems in April of 1998. Prior to starting the Wheelgroup Corporation, he was Chief of the Advanced Countermeasures Cell at the Air Force Information Warfare Center.
Kevin Ziese is a Computer Scientist at Cisco Systems, Inc. Prior to joining Cisco he was a Senior Scientist and Founder of the Wheelgroup Corporation, which was acquired by Cisco Systems in April of 1998. Prior to starting the Wheelgroup Corporation, he was Chief of the Advanced Countermeasures Cell at the Air Force Information Warfare Center.
Download here:
Web Application Vulnerabilities
16:49 |
Web Application Vulnerabilities: Detect, Exploit, Prevent /by Steven Palmer (Author). In this book, we aim to describe how to make a computer bend to your will by finding and exploiting vulnerabilities specifically in Web applications. We will describe common security issues in Web applications, tell you how to find them, describe how to exploit them, and then tell you how to fix them.
We will also cover how and why some hackers (the bad guys) will try to exploit these vulnerabilities to achieve their own end. We will also try to explain how to detect if hackers are actively trying to exploit vulnerabilities in your own Web applications.
* Learn to defend Web-based applications developed with AJAX, SOAP, XMLPRC, and more.
* See why Cross Site Scripting attacks can be so devastating.
* Download working code from the companion Web site.
Download here:
Cheap Wedding Photographers
08:19 |When looking for a professional wedding photographer ask to see their portfolio, you know that you are going to be shown the best of their work but have a look to see if their style suits you.
Ask for their price list, do not be bullied into accepting their fixed price package as you might not want that combination of photographs. Do you pay extra for extra prints? Is the cost of the album included in the price?
Save money with a cheap wedding photographer by only having them at the ceremony and a few at the reception. Do you need to have professional photos of the evening do? Especially if Aunt Agnes is doing the birdie song!
Think about the different combination of group photographs you want to ensure that these get taken.
A professional wedding photographer will take on average 150+ photos on the day, so you should have plenty to choose from.
Ask for recommendations from friends and make sure you shop around to get the best price and quality.
Here is a list of lots of places that you can find good cheap wedding photographers.An affordable wedding photographer would be to ask friends or relatives to take the photos for you. If you have designated photographers you get to see your wedding from different angles.
As more people now have digital cameras this makes the sharing of photos much easier and you can edit which is a great bonus.
Download here:
Photoshop CS3 retoration
06:59 |
Product Description
Take years off your keepsake photos or enhance the current ones with Photoshop CS3's powerful tools and the expert techniques and tips you'll find in this comprehensive guide. Using step-by-step instructions and over 500 pages of full-color examples, this book shows you how to clone, blend layers, add contrast, reduce glare, soften wrinkles, rescue torn photos, and more. From portraits to landscapes to architectural masterpieces, fine-tune your favorites with this expert guide.
From the Back Cover
Restore, refresh, and fine-tune your favorite photosTake years off your keepsake photos or enhance the current ones with Photoshop CS3's powerful tools and the expert techniques and tips you'll find in this comprehensive guide. Using step-by-step instructions and over 500 pages of full-color examples, this book shows you how to clone, blend layers, add contrast, reduce glare, and more. From portraits to landscapes to architectural masterpieces, fine-tune your favorites with this expert guide.
- Harness the tools of the retouching trade: brushes, cloning, and others
- Use layers and masks to build a non-destructive workflow
- Rescue faded, torn, or stained photographs
- Soften wrinkles, brighten eyes, tame hair, and smooth skin
- Restore sepia-toned, black-and-white, and full-color photographs
- Master resizing, resampling, resolution, and scanning
Download here:
Joomla! Web Security
05:19 |
Product Description
In Detail
Joomla! is one of the most powerful open-source content management systems used to build websites and other powerful online applications. While Joomla! itself is inherently safe, misconfigurations, vulnerable components, poorly configured hosts, and weak passwords can all contribute to the downfall of your site. So, you need to know how to secure your website from security threats.
Today every website needs to take security into consideration. Using the knowledge here, your Joomla! site can be ahead of the security threats so prevalent today.
This book will take you all the way from the most basic steps of preparation to the nuts and bolts of actual protection. It is packed full of relevant and real-world topics such as security tools, configuration suggestions, setting up your test and development environment, reading and interpreting log files, and techniques used by bad hackers on the Internet. In addition to this you will learn how to respond to a site emergency should one occur and how to collect the evidence needed to pursue law enforcement action. The book provides a concise overview of all the parts needed to construct a defence-in-depth strategy for your Joomla! site.
At the end of the book you will have a solid security foundation to take your Joomla! website to a higher level of security than the basic site setup.
What you will learn from this book?
This book covers:
This book will give you a strong, hands-on approach to security. It starts out with the most basic of considerations such as choosing the right hosting sites then moves quickly into securing the Joomla! site and servers. This is a security handbook for Joomla! sites. It is an easy-to-use guide that will take you step by step into the world of secured websites.
Who this book is written for?
This book is a must-read for anyone seriously using Joomla! for any kind of business, ranging from small retailers to larger businesses. With this book they will be able to secure their sites, understand the attackers, and more, without the drudging task of looking up in forums, only to be flamed, or not even find the answers.
Prior knowledge of Joomla! is expected but no prior knowledge of securing websites is needed for this book. The reader will gain a moderate to strong level of knowledge on strengthening their sites against hackers.
Joomla! is one of the most powerful open-source content management systems used to build websites and other powerful online applications. While Joomla! itself is inherently safe, misconfigurations, vulnerable components, poorly configured hosts, and weak passwords can all contribute to the downfall of your site. So, you need to know how to secure your website from security threats.
Today every website needs to take security into consideration. Using the knowledge here, your Joomla! site can be ahead of the security threats so prevalent today.
This book will take you all the way from the most basic steps of preparation to the nuts and bolts of actual protection. It is packed full of relevant and real-world topics such as security tools, configuration suggestions, setting up your test and development environment, reading and interpreting log files, and techniques used by bad hackers on the Internet. In addition to this you will learn how to respond to a site emergency should one occur and how to collect the evidence needed to pursue law enforcement action. The book provides a concise overview of all the parts needed to construct a defence-in-depth strategy for your Joomla! site.
At the end of the book you will have a solid security foundation to take your Joomla! website to a higher level of security than the basic site setup.
What you will learn from this book?
This book covers:
- Implementing steps for successful Joomla! website architecture
- Setting up metrics to measure security
- Exploring the test and development environment; developing your test plan to make sure everything will work as planned
- Utilizing your test and development site for disaster recovery
- Measuring the performance of your software development projects using a software development management system
- Exploring several tools to help protect your website
- Diving into security vulnerabilities: why they exist; some typical counter measures
- Exploring SQL Injections - how they can hurt you and how to prevent them
- Mastering the two important security layers - php.ini and .htaccess
- Reading and analyzing logs relevant to protecting your Joomla! site
- Handling Security Incidents in a professional manner
- Blocking nuisance IP addresses
This book will give you a strong, hands-on approach to security. It starts out with the most basic of considerations such as choosing the right hosting sites then moves quickly into securing the Joomla! site and servers. This is a security handbook for Joomla! sites. It is an easy-to-use guide that will take you step by step into the world of secured websites.
Who this book is written for?
This book is a must-read for anyone seriously using Joomla! for any kind of business, ranging from small retailers to larger businesses. With this book they will be able to secure their sites, understand the attackers, and more, without the drudging task of looking up in forums, only to be flamed, or not even find the answers.
Prior knowledge of Joomla! is expected but no prior knowledge of securing websites is needed for this book. The reader will gain a moderate to strong level of knowledge on strengthening their sites against hackers.
About the Author
Tom Canavan
A twenty-three year veteran of the Computer Business, and a Data Center Technology Consultant to Fortune-1000 Companies, Tom Canavan is a Certified Ethical Hacker and has a degree in Robotics and Numerical Control. He is author of the book Dodging the Bullets - A Disaster Preparation Guide for Joomla! Based Websites.
A twenty-three year veteran of the Computer Business, and a Data Center Technology Consultant to Fortune-1000 Companies, Tom Canavan is a Certified Ethical Hacker and has a degree in Robotics and Numerical Control. He is author of the book Dodging the Bullets - A Disaster Preparation Guide for Joomla! Based Websites.
Download here:
Photoshop CS Bible
05:04 |
Review
“…impressive…an ideal reference point for CS users…” (Advanced Photoshop, November 2005)“…a good starter for those serious about getting in to Photoshop…a sound one-off investment…” (British Journal of Photography, July 2004)
Product Description
- Photoshop is the world-standard image editing software for print and digital media; the next software release–predicted for late 2003–will be eagerly anticipated by millions of loyal users
- This edition will be a total revision to the classic bestseller
- Written by Photoshop Hall of Fame member Deke McClelland, whose easy and approachable style demystifies even the most complex Photoshop tasks
- "100 percent comprehensive, authoritative, and what you need" coverage, from the Apply Image command to the ZigZag filter
Download here:
Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions
05:02 |
Product Description
Lock down next-generation Web services
"This book concisely identifies the types of attacks which are faced daily by Web 2.0 sites, and the authors give solid, practical advice on how to identify and mitigate these threats." --Max Kelly, CISSP, CIPP, CFCE, Senior Director of Security, Facebook
Protect your Web 2.0 architecture against the latest wave of cybercrime using expert tactics from Internet security professionals. Hacking Exposed Web 2.0 shows how hackers perform reconnaissance, choose their entry point, and attack Web 2.0-based services, and reveals detailed countermeasures and defense techniques. You'll learn how to avoid injection and buffer overflow attacks, fix browser and plug-in flaws, and secure AJAX, Flash, and XML-driven applications. Real-world case studies illustrate social networking site weaknesses, cross-site attack methods, migration vulnerabilities, and IE7 shortcomings.
"This book concisely identifies the types of attacks which are faced daily by Web 2.0 sites, and the authors give solid, practical advice on how to identify and mitigate these threats." --Max Kelly, CISSP, CIPP, CFCE, Senior Director of Security, Facebook
Protect your Web 2.0 architecture against the latest wave of cybercrime using expert tactics from Internet security professionals. Hacking Exposed Web 2.0 shows how hackers perform reconnaissance, choose their entry point, and attack Web 2.0-based services, and reveals detailed countermeasures and defense techniques. You'll learn how to avoid injection and buffer overflow attacks, fix browser and plug-in flaws, and secure AJAX, Flash, and XML-driven applications. Real-world case studies illustrate social networking site weaknesses, cross-site attack methods, migration vulnerabilities, and IE7 shortcomings.
- Plug security holes in Web 2.0 implementations the proven Hacking Exposed way
- Learn how hackers target and abuse vulnerable Web 2.0 applications, browsers, plug-ins, online databases, user inputs, and HTML forms
- Prevent Web 2.0-based SQL, XPath, XQuery, LDAP, and command injection attacks
- Circumvent XXE, directory traversal, and buffer overflow exploits
- Learn XSS and Cross-Site Request Forgery methods attackers use to bypass browser security controls
- Fix vulnerabilities in Outlook Express and Acrobat Reader add-ons
- Use input validators and XML classes to reinforce ASP and .NET security
- Eliminate unintentional exposures in ASP.NET AJAX (Atlas), Direct Web Remoting, Sajax, and GWT Web applications
- Mitigate ActiveX security exposures using SiteLock, code signing, and secure controls
- Find and fix Adobe Flash vulnerabilities and DNS rebinding attacks
About the Author
Rich Cannings is a senior information security engineer at Google.
Himanshu Dwivedi is a founding partner of iSEC Partners, an information security organization, and the author of several security books.
Zane Lackey is a senior security consultant with iSEC Partners.
Himanshu Dwivedi is a founding partner of iSEC Partners, an information security organization, and the author of several security books.
Zane Lackey is a senior security consultant with iSEC Partners.
Download here:
ASP.NET Bible
07:20 |
Format : pdf | Size : 7.29 mb
"Comprising far more than an updated reference for Web application development, the ASP.NET Bible provides crucial guidance on leveraging the significant advances ASP.NET represents for the Web developer."-Michael Lane Thomas, .NET Series Editor100% Comprehensive
Authoritative
What you need
* Harness the power of ASP.NET for next-generation Web applications
* Build, deploy, and run distributed applications targeting any device
* Master ASP.NET development using both Visual Basic .NET and C#
* If ASP.NET can do it, you can do it too . . .
Completely revamped for the .NET Platform, ASP.NET is an indispensable tool for creating the next generation of Web applications and Web Services. This comprehensive resource gives you in-depth guidance for building dynamic, data-driven applications tailored to any browser or device. Whether you're a seasoned ASP developer or a Web development newcomer, you'll find the real-world techniques and insights you need to take ASP.NET programming to the next level.
Inside, you'll find complete coverage of ASP.NET
* Get up to speed fast on ASP.NET development with both Visual Basic .NET and C#
* Build forms with Web Controls, including Rich Web Controls like AdRotator and Calendar
* Debug ASP.NET pages - and learn how to write high-quality code
* Master ASP.NET database programming with ADO.NET and SQL Server
* Bind data and controls with XML
* Develop, deploy, and use business objects
* Create secure wireless applications using ASP.NET mobile controls
* Use ASP.NET to build, deploy, and publishWeb Services
Companion Web site includes source code from the book:
www.hungryminds.com/extras
* Test your Web Service prior to deployment with the Web Service help page
* Learn how to use page output caching with ASP.NET
Reader Level: Beginning to Advanced
Shelving Category: Programming/Web Development
Download here:
Top Hot
