I put this page together because I was having trouble bookmarking my favorite web sites.

I decided that I needed to save them all on a web page for easy reference... and here they are. That's all this is, and I hope that some of you find some use in it as well.

• phrack - the online hacker zine

• SecurityFocus.com
• A security search portal at www.securitysearch.net
• Visit the self-proclaimed "Security Portal" at www.infowar.com

• InfoSec News is a privately run, medium traffic list that caters to the distribution of information security news articles. These articles will come from newspapers, magazines, online resources, and more.
• Computer Security News Daily provides daily selections of news and other security-related information. Is designed to be browsed in 10 minutes or less.
• The Journal of Computer Security
• SC Info Security News Magazine
• There is a DoD infosec newsletter, the page is at www.disa.mil/infosec/disspapr.html
• The Crypt Newsletter is always good reading. http://sun.soci.niu.edu/~crypt/
• Phrack's "Loopback" section, at www.phrack.org, always makes me laugh out loud (the reader mail section).
• SysAdmin is a great (printed) Unix magazine with a strong focus on security.

• Introduction to Network Security by Matt Curtin
• RFCs about "Security"
• The Australian CERT Unix Security Checklist
• Introduction To Intrusion Detection Systems
• NCSA is the National Computer Security Association. You'll find plenty of papers, reports and tools here.
• Unix Guru Universe The Official Home Page for Unix System Administrators
• The Information Systems Security Association (ISSA) is a not-for-profit international organization of information security professionals and practitioners
• Murphy's Law and computer security by Wietse Venema.
• Playing Hide and Seek, Unix style By Phreak Accident
• Wietse Venema's ftp site has tools and papers. Wietse wrote TCP Wrappers, co-wrote SATAN and is generally seen as a god in internet circles.
• Improving the Security of Your Site by Breaking Into it by Dan Farmer
• Cert's UNIX "Steps for Recovering from a Root Compromise" paper
• An Evening with Berferd, In which a Cracker is Lured, Endured, and Studied by Bill Cheswick (the firewall guru)
• IF you're a Linux user, visit the Linux Documentation Project
• Lance Spitzner's page has a number of his white papers on "Armoring Linux", "Armoring Solaris", the methods of the "Script Kiddie", and much more.
• At the Laboratory for Information Technology (LIT), there are a number of interesting security papers.
• Shall We Dust Moscow? (Security Survey of Key Internet Hosts & Various Semi-Relevant Reflections) by Dan Farmer
• A white paper: The Inevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments
• Read the Linux Administrator's Security Guide
• Read Steve Sutton's NSA white paper on NT security guidelines.
• Secure Windows NT Installation and Configuration Guide is step by step guide.
  I don't have a link right now - search the web for it.
• Check out the white paper "Building an NT Bastion Host in Practice"
• Ten tips to lock Linux
• Linux "newbie" page has basic security info.
• According to his web page "Fred Cohen is one of the most recognized, respected, and requested names in information protection today." His page is a good resource for articles and information.
• See the technical library at www.netsys.com
• Securing X Windows John Fisher, CIAC, 1995 (pdf format)
• Dan Famer's security paper collection
• Have you been wanting a copy of the "Orange" or "Red" book? Here's the whole rainbow series: http://csrc.ncsl.nist.gov/secpubs/rainbow/ A second link to the series is: http://nsi.org/Computer/govt.html
• A listing of Microsoft white papers on security is at www.microsoft.com/security/Resources/whitepapers.asp
• The SANS Institite (System Administration, Networking, and Security) Institute is a cooperative research and education organization through which more than 62,000 system administrators, security professionals, and network administrators share the lessons they are learning and find solutions for challenges they face.
• FIRST is the Forum of Incident Response and Security Teams.
• The best books on computers and computer security are published by O'Reilly and Associates. www.oreilly.com
• Computer Security Information This page features general information about computer security.
• Read the DOS Rules for a good laugh.

Linux
• Visit Red Hat Linux Software's page at www.redhat.com
  If you're a first-time Linux user I'd recommend buying or downloading their distribution of Linux.
  • Red Hat errata page
• The best distribution (IMHO) of Linux is Debian at www.debian.org
• Bastille Linux -- www.bastille-linux.org
  The Bastille Hardening System attempts to "harden" or "tighten" the Linux operating system.
• Slashdot "News for Nerds"
• Freshmeat
• Linux Gazette
• Linux International
• Linux Journal
• Linux Mall
• Linux.com is quite a nice resource.
• munitions is a mega-archive of cryptographic software for the linux operating system.
• Linux on laptops
• Linux Now has an extensive document collection.
• Linux Online
• Linux Today
• Linux Webwatcher
• Linux Weekly News
• Sys Admin - Linux
• Look at the "Firewall" section of this page for more security oriented Linux resources.
• Need help with Lilo?
Berkeley Software Distribution
The BSD's are great for firewalling and Intrusion Detection due to powerful packet capture code and a fast TCP/IP stack, and all are descendants of 4.4 BSD Lite
• FreeBSD is the most popular of the BSD's. The goal of it's developers is to make the fastest, most advanced OS possible.
• OpenBSD is an effort to develop a secure operating system "out of the box." Their motto: "Sending Kiddies to /dev/null since 1995" :)
• Don't forget NetBSD. This OS is possibly the most widely ported OS in history.
• What is Darwin?
  "Darwin is a complete operating system based on the foundation technologies in Mac OS X Server. It is an advanced BSD Unix system which offers advanced networking, services such as the Apache web server, and support for both Macintosh and Unix filesystems. Darwin runs on Power Macintosh and Intel PC-compatible computers." Open Source Projects at Apple

• Network Flight Recorder is the commercial offering from Marcus Ranum, the man who wrote the Firewall Toolkit.
• Learn about the CIDER project, and the public domain IDS tool SHADOW.
• The Coast Intrusion Detection Pages has background info, plus a listing of IDS products with a discussion of each one.

• Portsentry takes action when it detects scans - usually that action is to "blackhole" the attacker (risky, but some people find it useful, myself included).
• Available for Unix and Windows, is Marcus Ranum's "Back Officer Friendly." It will tell you when you are scanned for Back Orifice, and can be made to listen on other commonly scanned ports.

• NT Objectives
• Diamond Computer Systems Pty. Ltd have released a BO2K scanner as freeware to the global public domain.
• CIAC NT
• Microsoft maintains a security page at www.microsoft.com/security
• Windows NT Magazine usually has NT Security articles to read. They are at www.winntmag.com/
• Carvdawg's Perl Page has a couple good NT security items like a scanner and a Tripwire wannabe perl script.
• NTBugtraq.com is the web page for the NTBugtraq mailing list. Check out the faq section and the fixes section.
• If you manage even one NT machine you should check this page regularly. www.ntsecurity.net/
• NT admins should check out Jim Buyens' Windows NT System Administration page
• ADDING NEW SERVICES TO THE WINDOWS NT KERNEL ( NATIVE API ) ON INTEL 80X86 PROCESSORS
• Netcat for NT is the indispensable tool you never knew you needed. Read about (and download) it at: www.l0pht.com/~weld/netcat/
• Open Service Ports for WindowsNT, Terminal Server, & ExchangeServer
• Every NT box needs tools for performance tuning and security monitoring from www.sysinternals.com. If you've never been there, go NOW!
• I'm sorry but I just had to include this: The "Boycott Microsoft Page" at www.vcnet.com/bms/
• BHS 32 Bit Download Center! The best 32-bit Shareware,Freeware,Trialware and Drivers on the Internet for NT!
  This site is good for security tools, you can get the NT Objectives tools, Sysinternals tools, and more.
• Ever wonder if the $ you spent on NT Server could have been spent a little more wisely? Well then this article on the (small) differences between NT Workstation and NT Server won't help a bit :)
• NT Freeware and Shareware Internet Resources for Windows NT®. is provided as a pointer to Internet applications, documents and resources that are available for Microsoft® Windows NT®. It's got everything from BOOTP, DHCP, DNS Servers to Document Management to Web Servers
• Make your NT box more like UNIX:
  • cygwin Recommended - these are the real GNU programs!
    • New cygwin users should visit Ernie Boyd's page

• OpenSSH A free implementation of SSH protocol version 1 and 2.
• MIT's Distribution site for PGP is http://web.mit.edu/network/pgp.html
• The SSL Protocol Internet Draft
• Kerberos: The Network Authentication Protocol

• tomsrtbt is "The most Linux on one floppy disk" for: rescue recovery panic & emergencies tools to keep in your shirt pockets whenever you can't use a hard drive
• Linux FreeS/WAN is an implementation of IPSEC & IKE for Linux.
• We couldn't think of leaving out the king of portscanners, nmap
• Portscans the machine you are surfing from (or your proxy)
  Created by Yasholomew Yashinski
• Check out the share level security on your Microsoft domain with SMBscanner from http://hispahack.ccc.de/smb.htm
• Government entities needing tools will want to visit the Computer Security Technology Center, "located at the Lawrence Livermore National Laboratory, which provides solutions to U.S. Government agencies facing today's security challenges in information technology."
• CIAC Tools page
• Wordlists

• The UNIX Socket FAQ Frequently asked questions about programming with sockets in UNIX environments.

• SATAN is now a little dated, but it started the scanner revolution.
• Webtrends Security Scanner
• Netsonar
• Nessus

• The Hack FAQ from Simple Nomad of NMCRC
• WWW Security
• The Intrusion Detection System (IDS) FAQ is at http://www.ticm.com/kb/faq/idsfaq.html
• How To Become A Hacker - FAQ written by Eric Raymond (not what you think)
• SANS Intrusion Detection FAQ

• security-audit-faq
• Computer Security Evaluation FAQ, Version 2.1
• alt.security.keydist Frequently Asked Questions
• comp.security.unix and comp.security.misc frequently asked questions
• Sniffers FAQ
• SSH (Secure Shell) FAQ - Frequently Asked Questions
• [SSL-Talk List FAQ] Secure Sockets Layer Discussion List FAQ v1.1.1
• USENET Virus FAQs- comp.virus
• [alt.comp.virus] FAQ Part 1/4
• [alt.comp.virus] FAQ Part 2/4
• [alt.comp.virus] FAQ Part 3/4
• [alt.comp.virus] FAQ Part 4/4
• VIRUS-L/comp.virus Frequently Asked Questions (FAQ) v2.00
• Viruses and the Mac FAQ
• Mini-FAQ: alt.comp.virus
• Unix
• Cryptography
• Uninterruptible Power Source

• The Critical Infrastructure Assurance Office (CIAO), announced by President Clinton in May 1998, will facilitate the creation of a national plan to protect the services that we depend on daily: telecommunications, banking and finance, electric power, transportation, gas and oil, emergency services and government services. www.ciao.gov is their site.
• Information Warfare and Information Security on the Web www.fas.org/irp/wwwinfo.html

• Nomad Mobile Research Center: http://www.nmrc.org/
• 8 little green men
• The l0pht (pronounced LOFT) is a group of hackers who wrote the password cracker that sets the standard for NT password cracking. They are at www.l0pht.com
• The folks at the Cult of the Dead Cow authored the infamous Back Orifice. Visit them at www.cultdeadcow.com/
• Let me just give you the ultimate "Hacking Links" web page and let you wander from there, some of the links are better than others. The page is at www.thecodex.com/hacking.html
  P.S. Watch your status bar messages on the bottom of your browser window closely when you visit this page.

• CERT is the granddaddy of all Incident Response teams.
  Be sure to read some of the documents at the site.
• Plus check out the COAST Hotlist kudos & credits page at www.cs.purdue.edu/coast/hotlist/

• STORY: SANS Commends NTBugtraq "According to Rob Kolstad of the SANS Institute, the SANS Community was polled last year and asked which security information source provided them with the most useful information, and which did they trust the most. SANS, in the poll, listed numerous well-known publications such as InfoWorld, and asked people to select their preference. To their amazement, the top 3 choices were not on the list. Bugtraq, NTBugtraq, and the SANS Digest were chosen the "Three Most Valuable Security Publications"."
• Every security admin should subscribe to the bugtraq mailing list, visit www.securityfocus.com to subscribe.
• Some other great info security mailing lists are at www.iss.net/vd/maillist.html
• Cypherpunks: Majordomo@sirius.infonex.com
• Firewall-Wizards: Majordomo@nfr.net or www.nfr.net/forum
• NT Bugtraq: Listserv@listserv.ntbugtraq.com
• RISKS: news: comp.risks or http://catless.ncl.ac.uk/Risks <-- Link to the mailing list is on the page

• COAST-Computer Operations, Audit, and Security Technology. COAST is a multiple-project, multiple-investigator laboratory in computer security research in the Computer Science Department at Purdue University. It is intended to function with close ties to researchers and engineers in major companies and government agencies. It focuses its research on real-world needs and limitations, with a special focus on security for legacy computing systems. With its recent increase in support and student and faculty participation, COAST is now the largest dedicated, academic computer security research group in the world.

• The DataLynx Security NewsGroups Page

• "What is Postfix? It is Wietse Venema's attempt to provide an alternative to the widely-used Sendmail program. Sendmail is responsible for an estimated 70% of all e-mail delivered on the Internet. With an estimated 100 million users, that's billions of messages daily. A stunning number. Postfix attempts to be fast, easy to administer, and secure, while at the same time being sendmail compatible enough to not upset existing users."
• Writeup of Postfix's UCE restrictions
• qmail has a security guarantee with an unclaimed reward.

• Enhancing E-Mail Security With Procmail

• List of anonymous remailers: http://www.sendfakemail.com/~raph/remailer-list.html

• Certification for the Information Security Professional (or CISSP)

• The Firewall Toolkit (FWTK) is available for free (of charge) download.
• Linux Firewalling and Masquerading Resources
• Linux 2.4 kernels have stateful packet filtering abilities.
  netfilter.samba.org
• The Linux IP Masquerade Resource
• Linux IP Maquerading Web Site
• ipfwadm utility (ipchains should be used instead if possible)
• IP Masquerading Mini-HOWTO
• IP Masquerading Mailing List
• Firewall Industry Guide
• Internet Firewalls - Resources This site provides the comprehensive list of resources associated with Internet firewalls.
• Firewall-1 Tricks & Tips
• PhoneBoy's Firewall-1 FAQ The site is loaded with helpful hint for running Firewall-1. Better than Checkpoint support!

• java.sun.com
• Cafe au Lait Java FAQs, News, and Resources
• gamelan.com "The official directory for Java"

• To verify or check for virus alerts visit http://ciac.llnl.gov/

• The unofficial spokesman for Open Source Software (besides Richard Stallman, Linus Torvalds and Tim O'Reilly) is Eric Raymond. His paper "The Cathedral and the Bazaar" is considered the definitive paper on the subject. Visit his home page.
• How can we mention Open Source without providing a link to www.gnu.org Richard Stallman is the man who brought the issues to everyone's attention.
• The developerWorks open source zone hosts a variety of projects for the open-source community. All projects on this zone are licensed under the same IBM Public License, which has been approved by the Open Source Initiative.

• List of ports used by known trojans
• UDP and TCP Port Numbers and NAT Status This web page is automatically generated from the IANA assigned port_numbers file. This set of web pages is intended as a resource for the Internet community
• listing of ports and corresponding services (rather complete)
• Exploits listed by ports affected
• Open Service Ports for WindowsNT, Terminal Server, & ExchangeServer
• TCP-IP and UDP ports database in an /etc/services style file.
  www.seifried.org/security/ports/services.gz

• Ever wonder what operating sytems "hacker" sites and security sites run? What about universities and operating system vendors?
  Take a moment to read "Remote OS detection via TCP/IP Stack FingerPrinting" by Fyodor (Phrack Magazine Volume 8, Issue 54)

• Use Samba to provide Windows file and print services on a UNIX host.
• John's Linux related stuff has Explore2fs, the NT/95 explorer for Linux ext2fs partitions!
• VMWare allows multiple operating systems to run AT THE SAME TIME on the same box.

• ComputerJobs.com
• The Certification for the Information Security Professional (or CISSP) page has Infosec job listings

• The official Perl site
• Robert's Perl Tutorial
• Jacksonville Perl Mongers
• schweizr.com is a great site in the middle of a great Perl webring
• CGI.pm - a Perl5 CGI Library by L. Stein
• Hot List for Perl for win32
• Perl for Win32
• The Perl Overview by Paul Doyle
• CGI Made Really Easy or, Writing CGI scripts to process Web forms
• CGI Documentation
• Win32::ODBC faq.
• Perl Education Center
• The Home Page of Randal L. Schwartz