Web Server Security
Get Protected
| OWASP | www.owasp.org | A fantastic resource for all web application-related security |
| Damn Vulnerable Web App | dvwa.co.uk | Another good training aid |
| VUPEN | www.vupen.com | Vupen provides a limited free vulnerability notification service |
| MySQL | dev.mysql.com | The General Security guidelines (bit.ly/aiBwYx) are a good place to start |
| Microsoft | msdn.microsoft.com | Lots of information on how to secure an IIS server |
| DarkNet | www.darknet.org.uk | A good security resource that provides frequent updates |
| WHOIS | who.is | Who is information |
| Web Sniffer | web-sniffer.net | Use this wesite to help with identification of the web server |
| Server Sniffer | serversniff.net | An excellent website for Name Server, host and DNS information |
| DNS Information | robtex.com | A website for finding more information about the network the server is on |
| Default Passwords | defaultpassword.com | A list of default passwords |
| Services Poert List | www.iana.org | A list of default ports |
| NMAP | nmap.org | A tool to perform an idle scan |
