Security Threats: Code Analysis Tool .NET (CAT.NET) Preview

CAT.NET is a binary code analysis tool that helps identify common variants of certain prevailing vulnerabilities that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection and XPath Injection. The tool can function as a plug-in for Visual Studio 2005/2008, FxCop custom rule, MSBuild custom task or through the command…


Security Guidance

As part of its commitment to a more secure and trustworthy computing ecosystem, Microsoft releases the SDL process guidance v4.1. IT policy makers and software development organizations can leverage this content to enhance and inform their own software security and privacy assurance programs. Get the guidance… Get the security process template for Visual Studio 2008…


FxCop 1.36

FxCop is an application that analyzes managed code assemblies (code that targets the .NET Framework common language runtime) and reports information about the assemblies, such as possible design, localization, performance, and security improvements . FxCop is intended for class library developers. However, anyone creating applications that should comply with the .NET Framework best practices will…


Health Monitoring: Designing Manageable Applications

This guide describes how to create applications that are easier to manage. When used alongside the associated code artifacts, this guide should help dramatically simplify the process of creating manageable applications, and therefore reduce the costs associated with application operations. This guide is designed for people involved in designing, developing, testing, deploying, and operating business…