Windows Live
™
Windows Live services
Home
Calendar
Contacts
Family Safety
Gallery
Hotmail
OneCare
SkyDrive
Spaces
All services
Other Live services
Live Search
Office Live
Xbox Live
MSN
Account
Feedback
Help Central
Home
Hotmail
Spaces
OneCare
MSN
Search
Sign in
Spaces home
Sign up
Spaces home
Your space
Friends
Photos
SkyDrive
Events
Montreal blog on Interne...
Profile
Friends
Blog
Lists
Tools
Send a message
Subscribe to RSS feed
Tell a friend
Add to My MSN
Add to Live.com
Invite as friend
Sign up for alerts
Explore Spaces
Lists
Book list
Other Security Bloggers, and articles on software
Other Security Bloggers, and articles on software
Name
Web address
Description
Programatically setting Wininet/Internet Explorer's Proxy settings
http://blogs.msdn.com/wndp/archive/2005/07/20/441060.aspx
From Windows Core Networking Blog
PaulDotCom Episode98
http://pauldotcom.com/wiki/index.php?title=Episode98
DLL Injection
Google Online Security Blog
http://googleonlinesecurity.blogspot.com/
The latest news and insights from Google on security and safety on the Internet
The Ghost In The Browser - Analysis of Web-based Malware by Google's Niels Provos
http://blogs.zdnet.com/security/images/provos.pdf
2007 9 pages Other link to doc: http://www.usenix.org/event/hotbots07/tech/full_papers/provos/provos.pdf
All Your iFRAMEs Point to Us by Google's Niels Provos
http://research.google.com/archive/provos-2008a.pdf
February 4th, 2008 22 pages
Password Strength Checker
http://www.passwordmeter.com/
This application is designed to assess the strength of password strings. The instantaneous visual feedback provides the user a means to improve the strength of their passwords, with a hard focus on breaking the typical bad habits
Microsoft Password checker
http://www.microsoft.com/canada/athome/security/privacy/password_checker.mspx
Password Checker can help you to gauge the strength of your password. It is for personal reference only. Password Checker does not guarantee the security of the password itself.
Default Router Password Database
http://www.routerpasswords.com/
This is the internets most complete default router password database available.
Google Sparsehash Package
http://google-sparsehash.googlecode.com/svn/trunk/doc/index.html
The Google sparsehash package consists of two hashtable implementations: sparse, which is designed to be very space efficient, and dense, which is designed to be very time efficient. For each one, the package provides both a hash-map and a hash-set
IDN Conversion tool
http://mct.verisign-grs.com/conversiontool/convertServlet
Putting [räksmörgås.josefßon.org] in IE7, gets puny coded to [http://xn--rksmrgs-5wao1o.josefsson.org/] use this tool to convert unicode characters to punycode as IE 7 does.
How long should my passphrase be?
http://world.std.com/~reinhold/dicewarefaq.html#howlong
To provide adequate protection against the most serious threats... keys used to protect data today should be at least 75 bits long. To protect information adequately for the next 20 years ... keys in newly-deployed systems should be at least 90 bits long
Draft Technical Report on C++ Library
http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2005/n1836.pdf
ISO/IEC DTR 19768 Doc No: N1836=05-0096 Date: 2005-06-24 Reply to: Matt Austern austern@google.com
Jeffrey's Exif Viewer
http://regex.info/exif.cgi
Great util for viewing more data on your image files than you care to know. Exchangeable Image File Format.
McAfee Avert Labs Blog
http://www.avertlabs.com/research/blog/index.php
Computer Security Research
Microsoft® Windows® Software Development Kit for Windows Vista™ and .NET Framework 3.0 Runtime Components
http://www.microsoft.com/downloads/details.aspx?FamilyID=4377F86D-C913-4B5C-B87E-EF72E5B4E065&displaylang=en
The Windows SDK includes documentation, samples, and tools designed to help you develop Windows applications and libraries using both Win32® and .NET Framework 3.0 technologies targeting Windows Vista.
Anton Stiglic
http://www.instantlogic.net/
A senior IT security advisor with a strong background in information theory and a keen interest in the business aspects involved around IT decisions. He has been involved in security in the IT industry since 1999, and in academia since 1996
Virus Bulletin News
http://www.virusbtn.com/news/index
Latest news from the anti-virus industry
StopBadware Blog
http://blogs.stopbadware.org/
Stop Badware Blog
Virus Total Blog
http://blog.hispasec.com/virustotal/
Blog VirusTotal
Norman Sandbox
http://www.norman.com/microsites/nsic/Submit/en-us
Upload malware for analysis
Susceptible Api's
https://buildsecurityin.us-cert.gov/daisy/bsi/76.html
Build Security In - Setting a Higher Standard for Software Assurance. This catalog provides a set of Coding Rules to assist software developers, whether manually or in conjunction with tools, to discover, explore, remove and eventually prevent security vul
Windows Wireless Networking
http://pages.infinit.net/codeguru/WiFiArticle.htm
Using WMI to verify WEP status - 2006 Article, Me
Uniform Resource Identifiers (URI): Generic Syntax
http://www.faqs.org/rfcs/rfc2396.html
This document defines the generic syntax of URI, including both absolute and relative forms, and guidelines for their use; it revises and replaces the generic definitions in RFC 1738 and RFC 1808.
RFC 3552
http://www.faqs.org/rfcs/rfc3552.html
Guidelines for Writing RFC Text on Security Considerations
Should I check the parameters to my function?
http://blogs.msdn.com/larryosterman/archive/2004/05/18/134471.aspx
Larry Osterman's blog - May 18 2004
Agile Alliance
http://agilealliance.org/
We are uncovering better ways of developing software by doing it and helping others do it.
Exploit Prevention Labs
http://www.explabs.com/
Exploit and 0day prevention
got API
http://www.gotapi.com/
A great website for ANY developer!
STL.NET Primer
http://msdn2.microsoft.com/en-us/library/ms379600.aspx
Stanley B. Lippman Architect, Microsoft Visual C++ team August 2004 Applies to: Microsoft Visual C++ 2005 Standard Template Library (STL) and STL.NET
STL/CLR
http://download.microsoft.com/download/5/9/c/59cd0dc5-4691-4c3e-840c-66d865f27692/stlclr.xps
STL/CLR – Version of Standard Template Library for managed code 4/4/2007
AV Test
http://av-test.org/
project of the Business-Information-Workgroup at the Institute of Technical and Business Information Systems at the Otto-von-Guericke-University Magdeburg (Germany) in cooperation with AV-Test GmbH. In regular intervals we test anti-virus, anti-spyware...
AV Comparatives
http://www.av-comparatives.org/
Independent comparatives of Anti-Virus software
VS2005 SP1 update for Vista
http://www.microsoft.com/downloads/details.aspx?familyid=90E2942D-3AD1-4873-A2EE-4ACC0AACE5B6&displaylang=en
http://support.microsoft.com/default.aspx?scid=929470
Peter Gutmann's Cryptlib
http://www.cs.auckland.ac.nz/~pgut001/cryptlib/
Better than OpenSSL?
Why Crunch Mode Doesn't Work
http://developers.slashdot.org/article.pl?sid=05/06/08/1646234
slashdot article, 2005
Top 50 Msdn security Articles
http://msdn.microsoft.com/msdnmag/cdrom/2004/cdrom04.aspx
MSDN Magazine Security CD, 19,95$
The Six Dumbest Ideas in Computer Security
http://www.ranum.com/security/computer_security/editorials/dumb/
by Marcus Ranum
Adam Shostack
http://www.emergentchaos.com/
Security Blog
Stefan Brands
http://www.idcorner.org/
Postings on anything related to digital identity management.
© 2008 Microsoft
Privacy
Legal
Code of Conduct
Report Abuse
Safety
Help Central
Account
Feedback
Tools 
