I've not got pointers to source, but I'd start with http://www.petefreitag.com/ He may even have such animals if you shoot him a email.
Douglas Knudsen http://www.cubicleman.com this is my signature, like it? On Fri, Jun 1, 2012 at 10:58 AM, <[email protected]> wrote: > Greetings: > > I need some examples of insecure CF to use as test bed against Fortify. I > want to verify that the Fortify rule pack will flag offending code that > allows SQL Injections and Cross-site scripting, etc. I could sit down and > write a bunch of insecure code examples - but I'm hoping I can grab some > from the web. (Not to mention there are more attacks than I can think of!) > > Sincerely, Brooks > > *ADS* develops & supports effiective, efficient and secure software > solutions > * > ------------------------------------------------------------------------------ > * > *Federal Reserve Bank of Atlanta *** *Application Delivery Services > 1000 Peachtree Street NE * Atlanta,Georgia * 30309-4470 ( 404-498-8178 > > >
