Configuring SSL for a website on IIS(technoblogy.net)

submitted by nauman1278(530) 2 years, 9 months ago

To remove the issue of sending/receiving data on http, SSL (Secure Sockets Layer) is used to encrypt data for transmission. In order to implement SSL successfully on your IIS, you need to get a Server Certificate. Server Certificates can be obtained from a trusted 3rd party read more...

add a comment |category: Security |Views: 8

tags: Security another

How to secure .NET managed code and is it worth it?(blog.itmagination.pl)

submitted by kubagc(10) 2 years, 9 months ago

Unlike .NET applications, unmanaged code compiles to machine code which is far more secure than what we have out of the box in C#/VB.NET. Before for reversed engineering we used debuggers that traced registers, showed API calls, strings and recognized procedures but we had to deal with it in pure assembler. How secure are our applications written in .NET Framework, what can we do to make them more secure and is it worth it? read more...

add a comment |category: Security |Views: 15

tags: Security another

Protecting your precious code! - Paul Mason(blog.paul-mason.co.nz)

submitted by tivit(364) 2 years, 10 months ago

Ever written a piece of code that is the best thing you've ever written - scratch that; that anyone has ever written? It certainly felt awesome didn't it? Now imagine that you found out that someone had stolen your code and was passing it as your own. How does it feel? This article is the beginning of a series of articles upon protecting your code! read more...

add a comment |category: Security |Views: 14

tags: Security another

Anti-XSS Library 3.0 RTM(code2code.info)

submitted by quachnguyen(384) 2 years, 10 months ago

Anti-XSS library 3.0 is now RTM!!! MSDN download center is updated with the new binaries read more...

add a comment |category: Security |Views: 30

tags: Security another

Security transparency in CLR 2.0 and CLR 4.0(bogdanbrinzarea.wordpress.com)

submitted by mureshan(295) 2 years, 10 months ago

An excellent series of post from David DeWinter read more...

add a comment |category: Security |Views: 6

tags: Security another

Session Attacks and ASP.NET - Part 2(blogs.sans.org)

submitted by j.monty(1868) 2 years, 11 months ago

In Session Attacks and ASP.NET - Part 1, I introduced one type of attack against the session called Session Fixation as well as ASP.NET's session architecture and authentication architecture. In this second post, I'll delve into a couple specific attack scenarios, cover risk reduction, and countermeasures specific to ASP.NET for protecting against session attacks in ASP.NET read more...

add a comment |category: Security |Views: 324

tags: Session Authentication Security ASP.NET another

Session Attacks and ASP.NET - Part 1(blogs.sans.org)

submitted by j.monty(1868) 2 years, 11 months ago

I’ve spent some time recently looking for updated information regarding session attacks as they apply to ASP.NET and am still not completely satisfied with how Microsoft has decided to implement session management in ASP.NET 2.0+. Part 1 explores ASP.NET session management, authentication, and session attacks against ASP.NET with a comparison of how ASP.NET stacks up against mitigation techniques against these attacks. read more...

add a comment |category: Security |Views: 396

tags: Session Authentication Security ASP.NET another

NVelocity and XSS(dobrzanski.net)

submitted by dobrzanski.net(173) 2 years, 11 months ago

Is Nvelocity XSS proof? read more...

add a comment |category: Security |Views: 8

tags: Security another

Create Logos(livearticles.org)

submitted by customlogos(10) 2 years, 11 months ago

Logosmartz provides you pre-defined logo templates and add special effects like shadow, Bevel, Outline and Gradient to create logos. read more...

add a comment |category: Security |Views: 10

tags: Security another

AzMan Bulk Import(joelangley.blogspot.com)

submitted by susan(15) 2 years, 11 months ago

The AzMan bulk import tool that many of us have used. The author is finally blogging. read more...

add a comment |category: C# |Views: 89

tags: AzMan Security C# another

Security Certificate problem(technoblogy.net)

submitted by nauman1278(530) 2 years, 11 months ago

If you are using a computer without the connector (console) software on it (e.g. at work trying to access your home server) and you try to connect to the web interface of WHS then the following error appears: If you are using a computer without the connector (console) software on read more...

add a comment |category: Security |Views: 1

tags: Security another

How to reg 64-bit assembly using VS2005 setup on 64-bit(technoblogy.net)

submitted by nauman1278(530) 2 years, 11 months ago

eg 64-bit assembly using VS2005 setup on 64-bit read more...

add a comment |category: Security |Views: 2

tags: Security another

Security Vulnerability Analysis for Fiddler(securitythroughabsurdity.com)

submitted by j.monty(1868) 3 years ago

Fiddler Plugins for Site Spider, Fuzzer, XSS/CSRF vulnerability detection, SQL Injection detection, Session Tampering, Information Leakage detection, etc. A ViewState decoder proof-of-concept has been completed. Looking for contributors as well. read more...

add a comment |category: Security |Views: 42

tags: Security another

The Geneva framework(marcinbudny.blogspot.com)

submitted by woro(5) 3 years ago

The “Geneva”, while being a very interesting framework developed by Microsoft, isn’t getting much buzz on the blogs. A beta 2 version was just recently released and the final version is planned somewhere in 2009. read more...

add a comment |category: Security |Views: 40

tags: Security another

XSRF Attacks in AJAX enabled apps(webpangea.blogspot.com)

submitted by SlartyBartfast(95) 3 years ago

A bit of research and a brief P.O.C. demonstrating a cross site request forgery against an AJAX enabled application... read more...

1 comment |category: Security |Views: 38

tags: jQuery AJAX Security another

Code Access Security Cheat Sheet(rapidapplicationdevelopment.blogspot.com)

submitted by JShimty(15) 3 years ago

A full page cheat sheet on Code Access Security (CAS). Includes screenshots of the .NET Framework 2.0 Configuration tool. Describes the following terms: Permission, PermissionSet, Code Group, Policy Level, Assembly Instance, Evidence; and Evidence Type. read more...

add a comment |category: Security |Views: 28

tags: Security another