Software Security
Security Training
Security Certification
Internet Storm Center
Cyber Security Graduate School
Security Awareness Training
ICS/SCADA
Penetration Testing
Cyber Defense Foundations
IT Audit
Computer ForensicsResources
Links
The SANS Software Security Community provides a variety of resources. Interact with your fellow professionals and appsec experts on the SANS AppSec Blog or discover solutions to appsec related issues with a multitude of webcasts.
Whitepapers
Web Application Injection Vulnerabilities: A Web App's Security Nemesis?
By Erik Couture on Jun 14, 2013
Setting Up a Database Security Logging and Monitoring Program
By Jim Horwath on May 10, 2013
Endpoint Security through Application Streaming
By Adam Walter on Mar 25, 2013
How To Guide
The SANS Developer How To Guide provides developers with simple code examples that quickly show how to prevent common security vulnerabilities.
Blog Posts
WhatWorks in AppSec: ASP.NET – Defend Against Cross-Site Scripting Using The HTML Encode Shortcuts
May 29, 2013
WhatWorks in AppSec: Log Forging
May 21, 2013
Security Testing: Less, but More Often can make a Big Difference
Jan 14, 2013
Webcasts
SANS Secure Amsterdam Webcast Series: Secure Session Management for Web Applications
By Raul Siles on Apr 12, 2012
When Headlines Meet Metrics: Determining Security Resources
By Jeremiah Grossman, Chief Technology Officer, WhiteHat Security on Apr 3, 2012
The Spy in my Pocket: Goldfinger - Stealing Data from Mobile Devices for Funds and Profits
By Kevin Johnson, Chris Cuevas and Tony DeLaGrange on Feb 9, 2012
Videos
Non-repudiation
By Jason Lam and Dr. Johannes Ullrich
AJAX and Web 2.0 Security
By Jason Lam and Dr. Johannes Ullrich
The Value of Code Scanning
By Dinis Cruz
