A site providing some tools to prevent or control the hacking of web sites.
This site is scheduled to go on line on October 27th, 2009
"When I was actively work with NIST on their secure programming initiative
SCAP program, one thing that struck me hard was the number of known unpatchable vulernabilities
listed in the National Vulnerability Database. When a friend reported that all of his websites were infected I looked at the infection and
immediately concluded "This ain't the type of infection that a virus checked will catch and correct!". The why is pretty simple.
The infection may be just a line of text inserted into some file that links to an evil site. A line that does that will appear normal. The only way to know it is evil means viewing it and asking "why????!!!" and concluding that it is evil.
Hackers can generate endless and continuous new websites and url's that render any signature mechanism ineffectural.
Friends pointed me at a variety of commercial firewalls (up to $4K a pop) and I decided that was only a partial solution because real problem is that no OS is perfect, nor will ever be perfect.
Vulernabilities will always be discovered and exploited in the OS. You do buy time with such firewalls -- but I was unhappy about the true effectiveness of such solutions.
My first cut was fixing my friend's site successfully without adding a firewall etc. I fixed the sites in the sense that infections were immediately undone when they occurred. The version on this site is a rework into a more generic tool based on that successful experience.
It does not replace virus checkers or firewalls but is an adjunct insurance policy."
Ken Lassesen