This WordPress plugin searches the files on your site for a few known strings sometimes used by hackers, and lists them with code fragments taken from the files.

Ha! Finally there is an official method to tell apart the security minded programmers from the rest of the coder crowd. GIAC Secure Software Programmer (GSSP) Certification is a brand new SANS exam designed to test the security knowledge of developers in an effort to reduce the application security vulnerabilities. It is an efficient example [...]

today I’ve found a PHP XSS and SQL injection source code analyzer called Pixy

NEW! Microsoft just released XSSDetect, which is a free VisualStudio plugin designed to detect XSS vulnerabilities in managed code.