Pixy

Although it might look like being outdated (its home page is announcing support for PHP4), Pixy is doing an outstanding job when looking for Cross-Site Scripting vulnerabilities and SQL or code injections.

It may be integrated with both IDEA and Eclipse development environments. Please, refer to the README file at Pixy's github page.

For All Users
(Experts or Not)

• Seven easy good practises
• Passwords & toothbrushes
• Starting with multi-factor authentication
• Bad mails for you:
  "Phishing", "SPAM" & fraud
• How to identify malicious e-mails and attachments
• How to secure your PC or Mac
• Working remotely
• Connecting to CERN
• Connecting using SSH
• Encrypting Windows PCs/laptops (Bitlocker), Macs (FileVault) and Linux (LUKS)
• More on Windows folders, Mozilla security

For Software Developers

• Good programming in C/C++, Java, Perl, PHP, and Python
• How to keep secrets secret
  (alternatives to passwords)
• Security checklist
• GitLab CI Security Tools
• Securing Web applications
• Static code analysis tools
• Further reading

For System Owners

• Checking for rootkits
• Securing Control Systems (CNIC)
• Securing Containers & Pods
• Security baselines
• The CERN Linux vulnerability FAQ