Individual Sites with a Wealth of Information Security Lore

• Rik Farrow
  http://www.spirit.com
• Crypt-o-Gram and a lot of important papers by Schneier
  Bruce Schneier and Counterpane Systems
  http://www.counterpane.com
• Bill Cheswick's home page
  http://cm.bell-labs.com/who/ches/index.html
• When the L0pht became part of atstake, a security consulting company, their tools were acquired as well. You can find tools, like l0phtcrack and dcetest at http://www.atstake.com/research/tools/
• Alec Muffet's home page
  http://www.users.dircon.co.uk/~crypto/
• Marcus Ranum's home page
  http://www.ranum.com
• Fred Cohen's home page
  http://all.net/
• BindView (a security consulting and software vendors) papers, including Michael Zalewski's paper on TCP sequence number insecurities:
  http://razor.bindview.com/publish/papers/
• Dorothy Denning's home page
  http://www.cs.georgetown.edu/~denning
• Dan Farmer's home page
  http://www.trouble.org
• Coroner's Toolkit can found at Wietse Venema's site, under Forensics: http://www.porcupine.org/forensics/, or at Dan Farmer's site: http://www.fish.com/forensics/
• Articles by Neohapsis (a security consulting firm in the Chicago area) members, including good reviews of IDS:
  http://www.neohapsis.com/articles/default.php
• George Smith's "Crypt" newsletter
  http://sun.soci.niu.edu/~crypt/