10 Tips for Decreasing Web Page Load Times Patience is a virtue, but for many, it is often a difficult concept to practice. That is especially true for web users visiting a website that takes a long time to load. Users are enamored with speedy websites, and when a site responds slowly, visitors lose their patience and are less likely to come back. Improving the speed of your website is important not only to users, but to search engine rankings as well. Last April, Google announced that they are now including website speed in their search ranking algorithms. While this inclusion doesn’t hold the same weight as many of Google’s other ranking signals, it is still something that should be considered when planning out your website’s SEO efforts. The following are some tips for decreasing your web page loading times. 1. The first thing you will want to do is to analyze your current page speed. There are many free tools out there for checking how long it takes to load your website. 2. 3. 4. 5. 6. 7. 8. 9. 10. Conclusion Related Content
Web design trends we love – Weavora | Our Blog I think most of you will agree that when it comes to websites, design really matters! Sometimes that’s what the whole project is about. The time has passed when visual representation bore less importance than content. There are some patterns that are quite easy to spot in other people’s design styles. Note: The article contains many images. Single page websites Once frowned upon by both clients and designers, long pages requiring a lot of scrolling are now all over the web. Some successful and famous companies — including Apple — use very long pages to present their products which proves to work for users. Examples to check: Photo backgrounds Another design trend that has been in for quite some time now centers around photography. Photo backgrounds are great for branding and presentation purposes when your main objective is to make a strong visual statement. Solid blocking Oversized imagery This trend semi-originates from the popularity of Mac OS X icon design. Focus on simplicity Parallax
JS3D: 3d Javascript Graphics Layer Click the cube to toggle animation Skip to: What is JS3D? JS3D is a library which allows you to have interactive 3d objects on your website, such as the spinning cube at the top of the page. It is extremely preliminary, so bug reports or feature suggestions are appreciated (but I don't guarantee getting around to anything). Is this useful? Maybe not. How do I use JS3D? Simple! Download it Download js3d.js (which is free and licensed under the GPL) and put it in a directory your page can access. Configure your markup Import the js3d by adding this code into the <head> section Now you'll need to make an empty div somewhere on your page (inside the <body> tags, which will serve as the canvas to which it will paint your 3d images. Next we need to initialize a renderer, and tell it to render into the div we just created. Next place the following code in your head tag. <script type="text/javascript"> var canvas; function init() { // This creates the renderer. Add objects to the scene Render the scene
HTML5 Canvas Demos and Applications To Make You Say WOW Our today’s post is on HTML5 Canvas Applications and Demos. Being the last day of this calender year, we were bit skeptical on topic to choose. After thinking for quite a while we chose HTML5 Canvas Applications over others as we wanted to portray a different subject. In this post, you will be able to check the power of HTML5. The Most astonishing facet of HTML5 is the HTML5 canvas. Advertisement DeviantART muro The tool can be used as a stand-alone web application as well as a lightweight drawing tool for adding pictures to forum comments. More Info on DeviantART muro Super Mario Kart Play JavaScript Super Mario Kart Online. More Info on Super Mario Kart Canvas Cartoon Animation that’s as good as Flash This short animation is as good as Flash, this is surely to amaze you. More Info on Canvas Cartoon Animation that’s as good as Flash Asteroid Belt sample Introducing hardware accelerated canvas, video and audio. More Info on Asteroid Belt sample Bert’s Breakdown More Info on Bert’s Breakdown Fishtank
XSS Filter Evasion Cheat Sheet Last revision (mm/dd/yy): 07/4/2018 This cheat sheet lists a series of XSS attacks that can be used to bypass certain XSS defensive filters. Please note that input filtering is an incomplete defense for XSS which these tests can be used to illustrate. Basic XSS Test Without Filter Evasion This is a normal XSS JavaScript injection, and most likely to get caught but I suggest trying it first (the quotes are not required in any modern browser so they are omitted here): XSS Locator (Polygot) The following is a "polygot test XSS payload." javascript:/*--></title></style></textarea></script></xmp><svg/onload='+/"/+/onmouseover=1/+/[*/[]/+alert(1)//'> Image XSS using the JavaScript directive Image XSS using the JavaScript directive (IE7.0 doesn't support the JavaScript directive in context of an image, but it does in other contexts, but the following show the principles that would work in other tags as well: No quotes and no semicolon Case insensitive XSS attack vector HTML entities Malformed A tags <! <!
Redirecting Overview Canvas is a 2D drawing API recently added to HTML and supported by most browsers (even Internet Explorer 9 beta). Canvas allows you to draw anything you want directly in the web browser without the use of plugins like Flash or Java. With its deceptively simple API, Canvas can revolutionize how we build web applications for all devices, not just desktops. These screenshots give you just a taste of what is possible with Canvas. What is Canvas? Canvas is a 2D drawing API. <html><body><canvas width="800" height="600" id="canvas"></canvas><script> var canvas = document.getElementById('canvas'); var c = canvas.getContext('2d'); c.fillStyle = "red"; c.fillRect(100,100,400,300); </script></body></html> screenshot Simple red rectangle This rectangle is drawn with the context.fillRect() function. It's important to understand that Canvas is for drawing pixels. So where does it fit in with the rest of the web? SVG: SVG is a vector API that draws shapes. Which? Browser Support Simple Drawing Paths
HTML5 Tutorials and Techniques That Will Keep You Busy - Noupe Design Blog Feb 23 2011 Ever since the latest revision of HTML has launched, internet marketers have switched to HTML5 due to its several new features which facilitate Web development distinctly. It has opened new doors to designers and developers and as you may have already noticed, the use of Flash in Web and internet applications has significantly dropped. In today’s post, we’ve gathered some very useful tutorials that will help you achieve a good command of HTML5. Please feel free to share with us other useful tutorials that have kept you busy! HTML5 Tutorials and Techniques Designing a Blog With HTML5 HTML 5′s feature set involves JavaScript APIs that make it easier to develop interactive web pages; let’s look at how to mark up a blog: Code a Vibrant Professional Web Design with HTML5/CSS3 In this Web design tutorial, we will convert the vibrant and professional design with the help of HTML5 and CSS3: Implementing HTML5 Drag and Drop One of the new features in HTML5 is native drag and drop. (ik)
An Introduction to Content Security Policy The web’s security model is rooted in the same origin policy. Code from should only have access to data, and should certainly never be allowed access. Each origin is kept isolated from the rest of the web, giving developers a safe sandbox in which to build and play. In theory, this is perfectly brilliant. In practice, attackers have found clever ways to subvert the system. Cross-site scripting (XSS) attacks, for example, bypass the same origin policy by tricking a site into delivering malicious code along with the intended content. This tutorial highlights one promising new defense that can significantly reduce the risk and impact of XSS attacks in modern browsers: Content Security Policy (CSP). Source Whitelists The core issue exploited by XSS attacks is the browser’s inability to distinguish between script that’s intended to be part of your application, and script that’s been maliciously injected by a third-party. <!
Yogur griego - HTML5: No es eso, no es eso Editado a las 12:13 del 2010-06-06 Desde que el W3C declaró oficialmente cerrada la gran guerra entre XHTML y la propuesta del WHATWG (los detalles los explica Mark Pilgrim aquí), HTML5 ha venido siendo la futura bala de plata que hará libres a los desarrolladores web. ¿Compatibilidad entre navegadores? Pero, al estilo de Ortega cuando contemplaba el panorama y veía adónde se encaminaba la II República hace 80 años, me parece que la promesa que representa HTML5 no sólo tiene que madurar bastante (por supuesto, se trata de un estándar muy reciente, y los navegadores web no se programan de un día para otro) sino que aún puede descarrilar y dar lugar a un escenario más sombrío del que pintan los defensores. ¿Cómo es esto posible? Que, a mi entender, se parece demasiado a esto otro que seguro que nos trae infaustos recuerdos: Con lo que Apple viene a decirnos algo parecido a «Lo sentimos por los estándares, pero cuando se trata de hacer virguerías, preferimos usar las nuestras».
Cross-domain communications with JSONP, Part 1: Combine JSONP and jQuery to quickly build powerful mashups Introduction Asynchronous JavaScript and XML (Ajax) is the key technology driving the new generation of Web sites, popularly termed as Web 2.0 sites. Ajax allows for data retrieval in the background without interfering with the display and behavior of the Web application. This approach, however, does not allow cross-domain communication because of restrictions imposed by the browser. Understanding the same-origin policy limitations The same-origin policy prevents a script loaded from one domain from getting or manipulating properties of a document from another domain. One relatively simple way to overcome this limitation is to have the Web page request data from the Web server it originates from, and to have the Web server behave as a proxy relaying the request to the actual third-party servers. JSON and JSONP JSON is a lightweight data format (compared to XML) for the exchange of information between the browser and server. And this is its JSON representation: Listing 1. Listing 2.
Seven Tools To Start Your Hassle-Free HTML5 Project By AN Jay on February 17, 2011 Seven Tools To Start Your Hassle-Free HTML5 Project Don't Forget to participate in a contest where you can win an amazing e-Commerce template from TemplateMonster. There are many tools out there for designers and developers, but getting by free and good ones is not that easy. You are welcome if you want to share more html5 tools and resources that our readers/viewers may like. Don’t Forget To Check These OutEight Absolutely Interesting HTML5-based Apps10 Addictive Games That (ACTUALLY) Demonstrate The Power Of HTML5 Technology Initializr Initializr is an HTML5 templates generator to help you getting started with an HTML5 project. Modernizr Modernizr adds classes to the <html> element which allow you to target specific browser functionality in your stylesheet. HTML5 test The HTML5 test score is only an indication of how well your browser supports the upcoming HTML5 standard and related specifications. What’s my IP SproutCore SwitchToHTML5 When can I use
IE and HTML5 testing In the 18 months I’ve really focussed on HTML5, I’ve seen approximately 238 different HTML5 “testing” sites appear. Most of them wildly pick and mix specs, checking for HTML5, related WHATWG-derived specifications such as Web Workers and then, drunk and giddy with buzzwords, throw in SVG, CORS, CSS Media Queries, and some Apple proprietary CSS extension before hyperventilating and going to bed for a lie down. (Added 4 June 2010: As a case in point, take Apple’s hilariously disingenous “HTML5″ showcases, of which only the video and audio demos have anything to do with HTML5, and which offer “browser upgrade” messages even to other WebKit browsers (screenshot courtesy of Peter Nelson). And don’t get me started on “Standards aren’t add-ons to the web. They are the web” coupled with browser-sniffing and proprietary vendor extensions.) As an analogy, imagine that HTML5 is the Starship Enterprise to HTML 4′s pogostick. 237 HTML5 testing sites check for Does it do most pogostick functions?
How Did We Get Here? You are here: Home Dive Into HTML5 Diving In Recently, I stumbled across a quote from a Mozilla developer about the tension inherent in creating standards: Implementations and specifications have to do a delicate dance together. Keep this quote in the back of your mind, and let me explain how HTML5 came to be. MIME types This book is about HTML5, not previous versions of HTML, and not any version of XHTML. Every time your web browser requests a page, the web server sends “headers” before it sends the actual page markup. Content-Type: text/html “text/html” is called the “content type” or “MIME type” of the page. Of course, reality is more complicated than that. Tuck that under your hat. A long digression into how standards are made Why do we have an <img> element? One of the great things about standards that are developed “out in the open” is that you can go back in time and answer these kinds of questions. (There are a number of typographical errors in the following quotes. Tony continued: