Here are several new links to some recent (and, due to my crazy year, not so recent) articles I’ve written for various TechTarget sites on the subjects of Web application and server security:
Web server weaknesses you don’t want to overlook (the “rest of the story” of Web flaws)
SQL injection tools for automated testing (a must-have for your toolkit)
Beefing up SSL to ensure your applications are locked down (good for some of those often-reported PCI DSS compliance gotchas)
Common security flaws to check for on your Linux-based Web systems (overlooked Linux systems are a great facilitator of Web vulnerabilities)
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”