- OWASP Top Ten Project
- OWASP Appsec Tutorial Series
- OWASP Testing guide
- OWASP Guide Project
- OWASP Code Review Project
- Security by Design Principles
CERT
- Secure coding standards, https://www.securecoding.cert.org/
Kirjoja
- The Secure Agile Software Development Life Cycle: http://www.n4s.fi/2014magazine/article2/assets/guidebook_handbook.pdf << Tenttiin
- Microsoft, "Simplified imlementation of the Microsoft Software Development Lifecycle" << Tenttiin
- Mark G. Graff, Kenneth R. Van Wyk: “Secure Coding: Principles and Practices”, O'Reilly & Associates; 1st edition, July 2003. 200 sivua
- John Viega, Matt Messier: “Secure Programming Cookbook for C and C++”, O'Reilly & Associates; July 2003. 790 sivua
Puskuriylivuodot:
- Elias Levy, Peter Szor: "Blended Attacks: Exploits, Vulnerabilities and Buffer-Overflow Techniques in Computer Viruses" https://www.symantec.com/avcenter/reference/blended.attacks.pdf
- OWASP, Buffer Overflow https://www.owasp.org/index.php/Buffer_Overflow
- Peter Bright, How security flaws work: The buffer overflow: https://arstechnica.com/information-technology/2015/08/how-security-flaws-work-the-buffer-overflow/