軟體安全開源開發框架介紹 1. Java Encoder 解決安全問題: XSS注入攻擊 官網參考 https://www.owasp.org/index.php/OWASP_Java_Encoder_Project https://github.com/OWASP/owasp-java-encoder https://owasp.github.io/owasp-java-encoder/ https://owasp.github.io/owasp-java-encoder/encoder/apidocs/index.html?index-all.html 2. OWASP Java HTML Sanitizer 解決安全問題: XSS注入攻擊 https://github.com/owasp/java-html-sanitizer…
威脅分析的開源工具分享
Microsoft Threat Modeling Tool 2016 https://www.microsoft.com/en-us/download/details.aspx?id=49168 Elevation of Privilege (EoP) Threat Modeling Card Game https://www.microsoft.com/en-us/download/confirmation.aspx?id=20303 OWASP Cornucopia https://www.owasp.org/index.php/OWASP_Cornucopia
4個MySQL 資料庫基本除錯技巧
4個MySQL 資料庫基本除錯技巧 1. 資料庫日誌error.log /var/log/mysql / error.log /var/ lib/mysql / error.log [pastacode lang=”markup” manual=”120714%2015%3A35%3A26%20%5BNote%5D%20Plugin%20’FEDERATED’%20is%20disabled.%0A120714%2015%3A35%3A26%20InnoDB%3A%20Initializing%20buffer%20pool%2C%20size%20%3D%208.0M%0A120714%2015%3A35%3A26%20InnoDB%3A%20Completed%20initialization%20of%20buffer%20pool%0A120714%2015%3A35%3A26%20InnoDB%3A%20Started%3B%20log%20sequence%20number%200%2067138180%0A120714%2015%3A35%3A27%20%5BNote%5D%20Event%20Scheduler%3A%20Loaded%200%20events%0A120714%2015%3A35%3A27%20%5BNote%5D%20%2Fusr%2Fsbin%2Fmysqld%3A%20ready%20for%20connections.%0AVersion%3A%20’5.1.63-0ubuntu0.10.04.1-log’%20socket%3A%20’%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock’%20port%3A%203306%0A%C3%8A(Ubuntu)” message=”” highlight=”” provider=”manual”/] 2. 資料庫執行狀態 …