Rahil Arora

Security | Fitness | Mindfulness

Security Resources

Sites/Blogs/Newsletters

Web Application Security

  • Browser Security Handbook - By Michal Zalewski
  • Google Gruyere - Web Application Exploits and Defenses - a small, cheesy web application that allows its users to publish snippets of text and store assorted files.
  • Google’s XSS game - In this training program, you will learn to find and exploit XSS bugs
  • Damn Vulnerable Web Application (DVWA) - an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment

Linux Security/Internals

  • Linux Insides - A series of posts about the linux kernel and its insides
  • Linux Workstation Security Checklist - This document is aimed at teams of systems administrators who use Linux workstations to access and manage your project’s IT infrastructure

Network Security

Cryptography

SSL/TLS

Memory Exploits

Best of StackOverflow/StackExchange Network

Books

  • The Web Application Hacker’s Handbook: Finding and Exploiting Security Flaws - Amazon Link
  • The Cuckoo’s Egg: Tracking a Spy Through the Maze of Computer Espionage - Amazon Link