http://erratasec.blogspot.com/2010/06/cyberwar-is-fiction.html “The conflicts between nation states in cyberspace are nothing like warfare, and the tools hackers use are nothing like weapons. However, this fiction is what is driving national policy, and that worries me a lot. I feel this cluelessness is a bigger danger to cyberspace than foreign hackers.” , by Robert Graham
http://panopticlick.eff.org/index.php?action=log&js=yes a project from Electronic Frontier Foundation. Tests your web browser’s signature by checking user-agent string, browser plug-ins, HTT_ACCEPT, etc
http://www.opennet.ru/openforum/vsluhforumID3/65661.html#23 Notes (exert) from Joanna Rutkowska recent paper comparing KVN and XEN architectures from security and design standpoint
http://www.robtex.com/ websites that provides a lot of useful info, like RBL (Relay Black Lists ), DNS, AS, BGP, etc
http://lwn.net/Articles/377391/ Article covers SCALE8x presentation from Ronald Minnich /Scandia Nat. Labs/ about issues involved running large scale networks [ >10M nodes ] . Article contains a lot of useful links, recommended reading.
http://www.greensql.net/ SQL-proxy/filtering software for MySQL and PostgreSQL databases, used to prevent SQL-injection-like attacks, filter-out dangerous SQL, etc
http://media.ccc.de/browse/congress/2009/index.html Video archive for Chaos Communications Congress 2009 (CCC - a well-knows security conference )
http://www.phenoelit-us.org/dpl/dpl.html default passwords list for various hardware devices
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html explains Marsh Ray’s attack in details, pls patch to fix the TLS protocol
http://news.electricalchemy.net/2009/10/cracking-passwords-in-cloud.html article tells you that using elcomsoft tools, you can brute-force PGP pass-phrase in ~120 days for ~$9K on 10 EC2 instances.