Lightweight Flash Video Player – f4Player

Post pobrano z: Lightweight Flash Video Player – f4Player

f4Player is a free and open source Flash video player that can play .fly, .f4v or .mp4 files in websites or within AS3 projects.

It is lightweight (8kb) and has a skinnable interface (few skins are included with the download).

The player supports progressive downloads (ability to play the downloaded portion of a file while the download is still in progress) and fullscreen display.

f4Player

Special Downloads:
Ajaxed Add-To-Basket Scenarios With jQuery And PHP
Free Admin Template For Web Applications
jQuery Dynamic Drag’n Drop
ScheduledTweets

Advertisements:
FindIcons.com – Ultimate Free Icon Search Engine
SSLmatic – Cheap SSL Certificates (from $19.99/year)
Follow WebResourcesDepot At Twitter And Get More Resources!

Tags: , , , ,

Related posts

10+ Free Web Application Security Testing Tools

Post pobrano z: 10+ Free Web Application Security Testing Tools

Websites are getting more and more complex everyday and there are almost no static websites being built.

Security GuyToday, the simplest website has at least a contact or newsletter form and many are built with CMS systems or it may be using 3rd party plugins, services, etc. that we don't have an exact control over.

Even if the website is 100% hand-coded, we trust what we created and think that it is safe, it is still possible that a special character is not sanitized or we are not aware of a new attacking technique.

So, it is really hard to say "my website is safe" without running tests over it. The good part is there are powerful and free web application security testing tools which can help you to identify any possible holes.

Before presenting them, let's remind the classic: "something can be secure as only as its weakest link" (which also tells us that it is not always the application and can still be the server it is hosted or that easy to remember FTP password).

Netsparker Community Edition (Windows)

Netsparker Community Edition

This is the free-community edition of the powerful Netsparker which still comes with a bunch of features and also false-positive-free.

The application can detect SQL Injection + cross-site scripting issues.

Once a scan is complete, it displays the solutions besides the issues and enables you to see the browser view and HTTP request/response.

Websecurify (Windows, Linux, Mac OS X)

Websecurify

Websecurify is a very easy-to-use and open source tool which automatically identifies web application vulnerabilities by using advanced discovery and fuzzing technologies.

It can create simple reports (that can be exported into multiple formats) once ran.

The tool is also multilingual and extensible with the add-on support.

Wapiti (Windows, Linux, Mac OS X)

Wapiti

Wapiti is an open source and web-based tool that scans the web pages of the deployed web applications, looking for scripts and forms where it can inject data.

It is built with Python and can detect:

  • File handling errors (Local and remote include/require, fopen, readfile…)
  • Database, XSS, LDAP and CRLF injections (HTTP response splitting, session fixation…)
  • Command execution detection (eval(), system(), passtru()…)

N-Stalker Free Version (Windows)

N-Stalker Free Version

The free edition performs restricted-yet-still-powerful set of web security assessment checks compared to the paid versions of the application.

It can check up to 100 web pages at once including web server and cross-site scripting checks.

skipfish (Windows, Linux, Mac OS X)

Skipfish

skipfish is a fully automated and active web application security reconnaissance tool.

It is lightweight and pretty fast (can perform 2000 requests/second).

The application has automatic learning capabilities, on-the-fly wordlist creation and form autocompletion.

skipfish comes with low false positive, differential security checks which are capable of spotting a range of subtle flaws, including blind injection vectors.

Scrawlr (Windows)

Scrawlr

Scrawlr is a free software for scanning SQL injection vulnerabilities on your web applications.

It is developed by HP Web Security Research Group in coordination with Microsoft Security Response Center.

Watcher (Windows)

Watcher

It is a plugin for Fiddler (the awesome HTTP debugging proxy) and works as a passive-analysis tool for HTTP-based web applications.

Watcher runs silently in the background and interact with the web-application to apply 30+ tests (where new ones can be added) while you browse.

It will identify issues like cross-domain form POSTs, dangerous context-switching between HTTP and HTTPS, etc.

x5s (Windows)

x5s

x5s is again a plugin for Fiddler just like Watcher which is designed to find encoding and character transformation issues that can lead to XSS vulnerability.

It simply tests user-controlled input using special characters like <, >, ', and reviews how the output encodes the special characters.

Exploit-Me (Windows, Linux, Mac OS X)

Exploit-Me

Rather than using a proxy like most of the security testing tools, Exploit-Me directly integrates into Firefox.

It is a set of 3 add-ons:

  • XSS-Me: for testing reflected XSS vulnerabilities
  • SQL Inject Me: for testing SQL injection vulnerabilities
  • Access-Me: for testing access vulnerabilities

They are all lightweight , work while you browse websites and simply inform you by adding extra styles to the objects with vulnerabilities

WebScarab (Windows, Linux, Mac OS X)

WebScarab

WebScarab is actually a proxy to sniff the HTTP(s) traffic and manipulate it.

However, it comes with features like "parameter fuzzer (for testing XSS and SQL injection vulnerabilities), or "CRLF injection (HTTP response splitting)" and more.

Acunetix Free Version (Windows)

Acunetix

This is the free and limited-featured version of a paid/pro product.

It performs a check on any website and identifies cross site scripting (XSS) vulnerabilities.

 

And, if you are looking to improve yourself in the area of web application security and need to play with an application legally, there is DVWA (damn vulnerable web app.) which is there for just this purpose.

Special Downloads:
Ajaxed Add-To-Basket Scenarios With jQuery And PHP
Free Admin Template For Web Applications
jQuery Dynamic Drag’n Drop
ScheduledTweets

Advertisements:
FindIcons.com – Ultimate Free Icon Search Engine
SSLmatic – Cheap SSL Certificates (from $19.99/year)
Follow WebResourcesDepot At Twitter And Get More Resources!

Tags: ,

Related posts

A snake swallowing its own tail / Bus Répétita!

Post pobrano z: A snake swallowing its own tail / Bus Répétita!

bussnake2009 bussnake2010
THE ORIGINAL?
Copenhaguen Zoo Ambient – 2009
Source : Adsoftheworld, Fubiz,
Agency : Bates & Werksette (Denmark)
LESS ORIGINAL :
Le Choc des Titans / Clash of the Titans – Ambient – 2010
Source : via Paper-Plane
Agency : Unknown, please help! (Paris, France)
Une idée qui revient en boucle… et ce n’est pas “cracher son venin” que d’affirmer qu’il ne peut s’agir que d’un plagiat, tant l’originale a circulée sur le web. Où alors il en va de cette idée comme de baucoup d’autres, il s’agît d’un “serpent de mer” (Définition : “un sujet qui revient régulièrement dans l’actualité”)… ou plutôt (comme le dit @p8perplane sur son blog) du serpent qui se mord la queue!

UVA – The Speed Of Light

Post pobrano z: UVA – The Speed Of Light

0.jpg

Speed of Light celebrates the tenth anniversary of broadband in
the UK with a series of installations by United Visual Artists. The
installations explore the themes of communication and modernity.
Stripped back to its materials, fibre optic is a thin strand of glass,
with nothing more than a flickering beam of light. UVA has used this
beam as the starting point for its work. The installations dramatise
the experience of using fibre-optic communication, re-imagining it as
an immersive environment.

The work has been commissioned by
Virgin Media and begins with an input from the audience, which is
transferred into a pathway of light, leading through the atmospheric
environment of the Bargehouse. The continuous line of light evolves
through each installation in turn shifting in intensity and form.

virginmedia.com/speedoflight

Agregator najlepszych postów o designie, webdesignie, cssie i Internecie