ASP.NET 2.0 Security Training Modules and Videos!!!

The ASP.NET 2.0 and security team has released excellent training modules on APS.NET 2.0 security, including labs, modules and videos.  This covers such topics as XSS, SQL Injection and much more at:https://channel9.msdn.com/wiki/default.aspx/SecurityWiki.SecurityTrainingModulesThere will be more coming soon! Below is my index to other Security guidance: ASP.NET 2.0 Security Guidance Library   Key Recommendations/Guidelines: ASP.NET 2.0 Security…

2

Cool ASP.NET 2.0 RSS Toolkit Released!

I just finished creating a web site that receives RSS feeds by using the ASP.NET 2.0 toolkit created by Dmitry of the ASP.NET Team.  If you need to consume or expose RSS feeds then you need to test drive the toolkit.  It also comes with source code. Also check out Scott’s blog including screenshots.


The Code Room: BREAKING INTO VEGAS!

The Code Room is online ½ hour TV show focusing on developers and the programming challenges that they face.   The latest show, in a very, very cool way, will demonstrate the impact of a hacked environment (a casino in the show) that has been penetrated and compromised by a group of hackers.  More importantly…

4

Microsoft Release new Anti-XSS tool

Microsoft just released a new Anti-XSS tool that works with .NET Framework 1.0, 1.1 and 2.0.  Anytime you echo user input back to the Web Page you are susceptible either persistent or non-persistent cross site scripting attacks.  You can download the tool from:    http://www.microsoft.com/downloads/details.aspx?familyid=9a2b9c92-7ad9-496c-9a89-af08de2e5982&displaylang=en   So what was wrong with using System.Web.HttpUtility.HtmlEncode?  The problem…

11

SECURITY ON THE BRAIN Webcast Series

Wow!  We currently have 1800 people registered for Security on the Brain Webcasts.  There is still room, so if you want to learn more about developing secure software using Visual Studio 2005 and .NET Framework 2.0 then these five sessions for one hour every Wednesday, starting March 1, 2006 are for you.    I am…


RSA 2006: Secure Software is up to Business

One of the themes discussed at RSA 2006 was Secure Software.  Secure software is up to businesses and most businesses are not doing enough to build and buy securely written software, according to a panel of corporate security executives, academics and professional software developers speaking at the RSA Security Conference 2006 yesterday.   Here are…


Windows Vista and WinFX February CTP just released!

The February CTP for Windows Vista, Windows SDK (and WinFX) and Orcas technologies such as Cider have been released on the Windows Vista and WinFX Dev Centers. http://msdn.microsoft.com/windowsvista http://msdn.microsoft.com/winfx After working with Windows Communication Foundation for a while I am really looking forward to installing the February CTP of WinFx. The actual downloads can be…


Snippy—a cool UI tool for building Code Snippets

As I mentioned in my last blog entry I think Code Snippets is one my favorite features in Visual Studio 2005.  However, I found creating snippets by marking up XML—at times—can be cumbersome until now that is!  Snippy is a simple but cool UI tool for building all of your snippets in VB.NET, C#, J#…


New C# Code Snippets for Visual Studio 2005

I would have to rank Code Snippets as one of my favorite features added to Visual Studio 2005.  But the code snippets that were initially available only for Visual Basic developers can now be downloaded for C# developers as well at: http://msdn.microsoft.com/vstudio/downloads/codesnippets/default.aspx Don’t forget to check out the code snippet community for much even more…


MSDN Forums Integrated with Visual Studio 2005

If you have been using Visual Studio 2005 at least once you will have probably noticed that the Start Page has changed and receives RSS feeds from http://msdn.microsoft.com for WebCasts.  Further yet if you have not noticed there is also a new menu called “Community”.  Community allow you to search for or ask technical questions to the…