Online home of Secure Coding: Principles and Practices (O'Reilly, 2003)


Japanese Translation
Secure Coding: Principles and Practices has been translated to Japanese by O'Reilly Japan.

MPlayer Vulnerability Analysis
Ken and Sean analyze a recently discovered buffer overflow vulnerability in a popular media player for Unix and discuss it's far-reaching implications.

An RSS feed of the Secure Coding mailing list (SC-L) has been made available by

Op/Ed Regarding Bluetooth Vulnerability
In their latest op/ed, Mark and Ken comment on a disturbing new bluetooth vulnerability affecting mobile phones manufactured by Nokia and SonyEricsson.

PHP X-Cart Vulnerability Analysis
In this latest vulnerability analysis we introduce a new analyst and ponder the fine art of user input screening as it applies to a well-known PHP application.