CERT Coordination Center - Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops information to improve site security. CERIAS - Center for Education and Research in Information Assurance and Security. University center for multidisciplinary research and education in areas of information security. PatchManagement.org - Mailing list dedicated to the discussion of patch management. AusCERT - Australian Computer Emergency Response Team. Advisories and tools. Bugtraq - Independent source for security vulnerabilities, alerts, and threats. PatchAdvisor - Fee based patch alert service. Secunia - Provides security advisories and information about patches, and provides software for vulnerability management. US-CERT - Established in 2003 to protect the nation's Internet infrastructure, US-CERT coordinates defense against and responses to cyber attacks across the nation. Patch Management Forum - Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities. SecurityFocus: Bugtraq - Full disclosure computer security vulnerabilities feed. Open Source Vulnerability Database - Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ. SANS Internet Storm Center - Cooperative cyber threat monitor and alert system. Features daily handler diaries that summarize and analyze new threats and events. Apache HTTP Server Vulnerability Lists - Lists of security problems fixed in released versions of the Apache HTTP Server.