Interesting links – April 29
Some potentially interesting links for April 29:
- chaRMe – A web based open source Risk management engine for supporting ISO/IEC 27001 compliance. Also PCI DSS (but this part is currently German language only). Available as a VMware appliance image.
- Jedi Mind Tricks: HTTP Request Smuggling – Request smuggling could be on the rise with “cloud computing”. Nice summary of the issues with suggested countermeasures
- (D)DoS-Deflate – a script to automatically mitigate (D)DoS attacks on Apache servers by monitoring logs
Posted in Interesting |
Tags: apache, compliance, denial of service, ISO, ISO+27001, Linux, PCI+DSS, sysadmin, tools, web application security, web security, webappsec, xss
Tags: apache, compliance, denial of service, ISO, ISO+27001, Linux, PCI+DSS, sysadmin, tools, web application security, web security, webappsec, xss