Hi, Yes I'm web developer and yes I know that, but a "friend" (I prefer say people I know) tell me about spyware ans custom software exploit capable to grab password or save the page sourcefile in server side application. I know asp vbscript classic, php and coldfusion (basic because the cf hosting prices is high more than others).
I'm look for documents or others way for know all last techniques, I don't think are the same of one year ago... fake email, fake pages, js injection.. firefox have a lot of extension, like show the hiden field.. and I think a changes in techniques used how to attack a website.
Where I live a tv show hosted a guy, around in *0 mins. this guy (with a spiderman mask) have defaced a website and opened the ms sql database of that website !
I think to know very basic techniques I'm impressed by spiderguy!
Thankyou and sorry for my bad english.