[prev in list] [next in list] [prev in thread] [next in thread]
List: owasp-dotnet
Subject: Re: [Owasp-dotnet] Owasp-dotnet Digest, Vol 16, Issue 15
From: "Izzet Kerem Kusmezer" <keremskusmezer () gmail ! com>
Date: 2008-03-28 9:43:37
Message-ID: f235628a0803280243x4d80975ak7b3415b38a09add2 () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi,
There is cool tutorial down there about fxcop rule development best
practices.
http://www.binarycoder.net/fxcop/html/index.html
2008/3/27, Izzet Kerem Kusmezer <keremskusmezer@gmail.com>:
>
> What about the status of the samy implementation in .Net?
> I strongly agree with fxcop rule generation project for security based
> features.
>
>
>
> 2008/3/27, owasp-dotnet-request@lists.owasp.org <
> owasp-dotnet-request@lists.owasp.org>:
> >
> > Send Owasp-dotnet mailing list submissions to
> > owasp-dotnet@lists.owasp.org
> >
> > To subscribe or unsubscribe via the World Wide Web, visit
> > https://lists.owasp.org/mailman/listinfo/owasp-dotnet
> > or, via email, send a message with subject or body 'help' to
> > owasp-dotnet-request@lists.owasp.org
> >
> > You can reach the person managing the list at
> > owasp-dotnet-owner@lists.owasp.org
> >
> > When replying, please edit your Subject line so it is more specific
> > than "Re: Contents of Owasp-dotnet digest..."
> >
> >
> > Today's Topics:
> >
> > 1. Re: .NET Project Outreach (dinis cruz)
> > 2. Re: .Net HTML parser library (Dan Cornell)
> >
> >
> > ----------------------------------------------------------------------
> >
> > Message: 1
> > Date: Thu, 27 Mar 2008 11:54:36 +0000
> > From: "dinis cruz" <dinis.cruz@owasp.org>
> > Subject: Re: [Owasp-dotnet] .NET Project Outreach
> > To: michaelslists@gmail.com
> > Cc: owasp-dotnet@lists.owasp.org
> > Message-ID:
> > <60235a7b0803270454i1c278897s1ea5570b18c4be32@mail.gmail.com>
> > Content-Type: text/plain; charset="iso-8859-1"
> >
> > There are a couple Michael's ideas at
> > http://trac2.assembla.com/owaspdotnet/report/1 that are quite
> > interesting:
> >
> >
> > - create a set of 'owasp fxcop
> > rules'<http://trac2.assembla.com/owaspdotnet/ticket/6>- Assuming that
> > FxCop rules generation is better than it was in 2006, this
> > should be integrated with the
> > http://www.owasp.org/index.php/Category:OWASP_Code_Review_Project and
> > use these FxCop rules to check for the stuff highlighted in there
> > - look at manipulating the viewstate to show controls that are hidden
> > via 'visible=false' <http://trac2.assembla.com/owaspdotnet/ticket/1> -
> > if you want to see this vuln in action, try HacmeBank V2 (using .NET
> > 1.1) and use it to access the admin section. I am under the impression
> > that this was fixed on 2.0, but would be good to find out exactly what
> > is going on
> > - consider a sort of security 'rating/review' of popular .net
> > projects<http://trac2.assembla.com/owaspdotnet/ticket/5>- there are
> > numerous OWASP projects that are trying to deal with this, let
> > me know if you want more details
> > - .... etc..
> > - Would be good to start adding more details to the other ideas (like
> > the ones dealing with the membership providers) since they are very
> > good
> > article candidates (for WIKI pages and publication on other .NET
> > websites/magazines).
> >
> > Dinis
> >
> >
> > On Wed, Mar 26, 2008 at 10:33 PM, silky <michaelslists@gmail.com> wrote:
> >
> > > On Thu, Mar 27, 2008 at 9:12 AM, silky <michaelslists@gmail.com>
> > wrote:
> > > > On Wed, Mar 26, 2008 at 10:10 PM, Mark Roxberry <
> > mark.roxberry@owasp.org>
> > > wrote:
> > > > > Just a few thoughts,
> > > > >
> > > > > How to get involved - I can put a page up for the .NET side. At
> > the
> > > moment,
> > > > > feedback on this list is important.
> > > > >
> > > > > What do you think OWASP .NET should be?
> > > > > I see it as a starting point for all .NET security
> > resources. How
> > > does it
> > > > > become a starting point - 1.) re-org it so the site makes sense
> > and
> > > not a
> > > > > lot of noise, 2.) reach out to the different channels that we
> > > participate in
> > > > > (user groups, websites, magazines, etc.). Is this what you see
> > it
> > > should
> > > > > be? Or something different?
> > > > >
> > > > > What do you need or what do you want to do in this
> > community? Should
> > > we
> > > > > have a "job posting" type page with smaller projects for people -
> > > this is a
> > > > > volunteer org, and I understand people only have so much time.
> > > >
> > > > perhaps even something like trac to track all sorts of misc items
> > that
> > > > need doing, then people can come along and just take ownership of
> > > > them, if the person who posted it doesn't have time. would also be
> > a
> > > > nice place to share ideas easily, in a good format.
> > > >
> > > > could use an assembla.com space for that.
> > >
> > > trac: http://trac2.assembla.com/owaspdotnet/wiki if anyone is
> > > interested. anyone can join, etc, etc.
> > >
> > > assembla home: http://www.assembla.com/wiki/show/owaspdotnet
> > >
> > > --
> > > http://lets.coozi.com.au/
> > >
> > > There's not a problem I can't fix, because I can do it in the mix.
> > > _______________________________________________
> > > Owasp-dotnet mailing list
> > > Owasp-dotnet@lists.owasp.org
> > > https://lists.owasp.org/mailman/listinfo/owasp-dotnet
> > >
> > -------------- next part --------------
> > An HTML attachment was scrubbed...
> > URL:
> > https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/41770534/attachment-0001.html
> >
> > ------------------------------
> >
> > Message: 2
> > Date: Thu, 27 Mar 2008 09:18:28 -0500
> > From: "Dan Cornell" <dan@denimgroup.com>
> > Subject: Re: [Owasp-dotnet] .Net HTML parser library
> > To: "Jason Axley" <jason@axley.net>, <michaelslists@gmail.com>
> > Cc: owasp-dotnet@lists.owasp.org
> > Message-ID:
> > <4122F6F18CC18A4FBE1DCBA11348F0AB0234450E@satmail.denimgroup.com>
> > Content-Type: text/plain; charset="us-ascii"
> >
> > I used the "csspider" code from Jeff Heaton
> > http://www.jeffheaton.com/source as a base when I put together sprajax a
> > while back. The HTML parsing in there is _really_ basic but for a CSRF
> > Guard implementation you may want something that is that forgiving.
> >
> >
> >
> > I made a couple of changes to make the parser more "event-based". My
> > updated code is available online here:
> >
> > http://code.google.com/p/sprajax/source/browse
> >
> >
> >
> > The code you would be looking for should be in Sprajax/csspider in the
> > Spider.Engine directory.
> >
> >
> >
> > This is nowhere as full-featured as something like JTidy - this is
> > mainly just basic tag and attribute parsing so you would need to build a
> > lot of stuff on top of it. But it _may_ be better than starting from
> > scratch.
> >
> >
> >
> > Thanks,
> >
> >
> >
> > Dan
> >
> >
> >
> > From: owasp-dotnet-bounces@lists.owasp.org
> > [mailto:owasp-dotnet-bounces@lists.owasp.org] On Behalf Of Jason Axley
> > Sent: Thursday, March 27, 2008 12:51 AM
> > To: michaelslists@gmail.com
> > Cc: owasp-dotnet@lists.owasp.org
> > Subject: Re: [Owasp-dotnet] .Net HTML parser library
> >
> >
> >
> > It's for the .Net CSRF Guard. An attempt to implement at least the same
> > methodologies as exist in the Java version of the same. However, I'm
> > definitely with you. I'd prefer to skip it since there are some other
> > methods that seem to work fine. But, until I throw a complex real-world
> > application at them, I'm not sure if anyone knows metrics about which
> > one is better for performance and accuracy.
> >
> > -Jason
> >
> > silky wrote:
> >
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > On Thu, Mar 27, 2008 at 4:17 PM, Jason Axley wrote:
> >
> >
> > Anyone know of a decent, free .Net HTML parser library? There
> > are a lot
> > for other languages but I don't want to reinvent any wheels for
> > .Net...
> >
> >
> >
> > out of interest what do you want to for? any time i've considered
> > doign this, i've always tried to find another way around it, because
> > of the complexity ...
> >
> >
> >
> >
> > -Jason
> >
> >
> >
> > - --
> > http://lets.coozi.com.au/
> >
> > There's not a problem I can't fix, because I can do it in the mix.
> >
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.4.7 (MingW32)
> > Comment: http://firegpg.tuxfamily.org
> >
> > iQEVAwUBR+s00U4i+6wd5ptaAQK+8Af9E7Vps2OjoG/F0XtFeJ+sPTtyF/Bi9M/A
> > jDjF193nfFwikw4Q6Q5pTr8WAPSgraKOsXhc53HNCK5/+4zxpZ0Rgi3Z4POEaZXl
> > eGg/HugOt4LeZ3ne8cq5IlapKjdUQS7ugna7dvgJjmTpx49drpQR/R4trFOO3lLZ
> > Xlbfjcm9qv6A+q2NNLb8KrJSdScckgm51SKtDR3Tj3JVc3qDjyqOkRC99jnVCmV0
> > uaQQQvJxEpmlLoQBK2xQKlHNtFGhWDau//7fggIX6W37VHH081faBmPPK0jcTTk2
> > n/dGLNIaZhkaAmEys+ogOSaZqkhYfzXMwi54htVI4uj94qa/5J22tg==
> > =dkG9
> > -----END PGP SIGNATURE-----
> >
> > !DSPAM:4,47eb34b348841701221578!
> >
> >
> >
> >
> >
> > -------------- next part --------------
> > An HTML attachment was scrubbed...
> > URL:
> > https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/815d35a7/attachment-0001.html
> >
> > ------------------------------
> >
> > _______________________________________________
> > Owasp-dotnet mailing list
> > Owasp-dotnet@lists.owasp.org
> > https://lists.owasp.org/mailman/listinfo/owasp-dotnet
> >
> >
> > End of Owasp-dotnet Digest, Vol 16, Issue 15
> > ********************************************
> >
>
>
[Attachment #5 (text/html)]
<div>Hi,</div>
<div> </div>
<div>There is cool tutorial down there about fxcop rule development best \
practices.</div> <div> </div>
<div><a href="http://www.binarycoder.net/fxcop/html/index.html">http://www.binarycoder.net/fxcop/html/index.html</a><br><br> </div>
<div><span class="gmail_quote">2008/3/27, Izzet Kerem Kusmezer <<a \
href="mailto:keremskusmezer@gmail.com">keremskusmezer@gmail.com</a>>:</span> \
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; \
BORDER-LEFT: #ccc 1px solid"> <div>What about the status of the samy implementation \
in .Net?</div> <div>I strongly agree with fxcop rule generation project for security \
based features.</div> <div><br><br> </div>
<div><span class="gmail_quote">2008/3/27, <a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-request@lists.owasp.org" \
target="_blank">owasp-dotnet-request@lists.owasp.org</a> <<a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-request@lists.owasp.org" \
target="_blank">owasp-dotnet-request@lists.owasp.org</a>>:</span> <div><span \
class="e" id="q_118f14acbdfb439c_1"> <blockquote class="gmail_quote" \
style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px \
solid">Send Owasp-dotnet mailing list submissions \
to<br> <a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:owasp-dotnet@lists.owasp.org" \
target="_blank">owasp-dotnet@lists.owasp.org</a><br> <br>To subscribe or unsubscribe \
via the World Wide Web, visit<br> <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="https://lists.owasp.org/mailman/listinfo/owasp-dotnet" \
target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-dotnet</a><br> or, via \
email, send a message with subject or body 'help' \
to<br> <a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-request@lists.owasp.org" \
target="_blank">owasp-dotnet-request@lists.owasp.org</a><br> <br>You can reach the \
person managing the list at<br> <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-owner@lists.owasp.org" \
target="_blank">owasp-dotnet-owner@lists.owasp.org</a><br> <br>When replying, please \
edit your Subject line so it is more specific<br>than "Re: Contents of \
Owasp-dotnet digest..."<br><br><br>Today's Topics:<br><br> 1. Re: \
.NET Project Outreach (dinis cruz)<br> 2. Re: .Net HTML parser library \
(Dan Cornell)<br> <br><br>----------------------------------------------------------------------<br><br>Message: \
1<br>Date: Thu, 27 Mar 2008 11:54:36 +0000<br>From: "dinis cruz" <<a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:dinis.cruz@owasp.org" \
target="_blank">dinis.cruz@owasp.org</a>><br>
Subject: Re: [Owasp-dotnet] .NET Project Outreach<br>To: <a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:michaelslists@gmail.com" \
target="_blank">michaelslists@gmail.com</a><br>Cc: <a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:owasp-dotnet@lists.owasp.org" \
target="_blank">owasp-dotnet@lists.owasp.org</a><br> \
Message-ID:<br> <<a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="mailto:60235a7b0803270454i1c278897s1ea5570b18c4be32@mail.gmail.com" \
target="_blank">60235a7b0803270454i1c278897s1ea5570b18c4be32@mail.gmail.com</a>><br>
Content-Type: text/plain; charset="iso-8859-1"<br><br>There are a couple \
Michael's ideas at<br><a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://trac2.assembla.com/owaspdotnet/report/1" \
target="_blank">http://trac2.assembla.com/owaspdotnet/report/1</a> that \
are quite interesting:<br> <br><br> - create a set of 'owasp \
fxcop<br>rules'<<a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://trac2.assembla.com/owaspdotnet/ticket/6" \
target="_blank">http://trac2.assembla.com/owaspdotnet/ticket/6</a>>- Assuming \
that<br> FxCop rules generation is better than it was in 2006, \
this<br> should be integrated with the<br> <a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="http://www.owasp.org/index.php/Category:OWASP_Code_Review_Project" \
target="_blank">http://www.owasp.org/index.php/Category:OWASP_Code_Review_Project</a> \
and<br> use these FxCop rules to check for the stuff highlighted in \
there<br> - look at manipulating the viewstate to show controls that are \
hidden<br> via 'visible=false' <<a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="http://trac2.assembla.com/owaspdotnet/ticket/1" \
target="_blank">http://trac2.assembla.com/owaspdotnet/ticket/1</a>> -<br> \
if you want to see this vuln in action, try HacmeBank V2 (using \
.NET<br> 1.1) and use it to access the admin section. I am under the \
impression<br> that this was fixed on 2.0, but would be good to find out \
exactly what<br> is going on<br> - consider a sort of security \
'rating/review' of popular .net<br>projects<<a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="http://trac2.assembla.com/owaspdotnet/ticket/5" \
target="_blank">http://trac2.assembla.com/owaspdotnet/ticket/5</a>>- there are<br> \
numerous OWASP projects that are trying to deal with this, let<br> me know \
if you want more details<br> - .... etc..<br> - Would be good \
to start adding more details to the other ideas (like<br> the ones dealing \
with the membership providers) since they are very good<br> article \
candidates (for WIKI pages and publication on other \
.NET<br> websites/magazines).<br><br>Dinis<br><br><br>On Wed, Mar 26, 2008 \
at 10:33 PM, silky <<a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:michaelslists@gmail.com" target="_blank">michaelslists@gmail.com</a>> \
wrote:<br> <br>> On Thu, Mar 27, 2008 at 9:12 AM, silky <<a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:michaelslists@gmail.com" \
target="_blank">michaelslists@gmail.com</a>> wrote:<br>> > On Wed, Mar 26, \
2008 at 10:10 PM, Mark Roxberry <<a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:mark.roxberry@owasp.org" \
target="_blank">mark.roxberry@owasp.org</a>><br> > wrote:<br>> \
> > Just a few thoughts,<br>> > ><br>> \
> > How to get involved - I can put a page up for the .NET \
side. At the<br>> moment,<br>> > > feedback on this \
list is important.<br> > > ><br>> > > What do \
you think OWASP .NET should be?<br>> > > I see it as a starting \
point for all .NET security resources. How<br>> does it<br>> \
> > become a starting point - 1.) re-org it so the site makes sense \
and<br> > not a<br>> > > lot of noise, 2.) reach out to the \
different channels that we<br>> participate in<br>> > > (user \
groups, websites, magazines, etc.). Is this what you see it<br>> \
should<br>> > > be? Or something different?<br> > \
> ><br>> > > What do you need or what do you \
want to do in this community? Should<br>> we<br>> \
> > have a "job posting" type page with smaller projects \
for people -<br>> this is a<br> > > > volunteer org, and I \
understand people only have so much time.<br>> ><br>> \
> perhaps even something like trac to track all sorts of misc items \
that<br>> > need doing, then people can come along and just take \
ownership of<br> > > them, if the person who posted it doesn't \
have time. would also be a<br>> > nice place to share ideas easily, \
in a good format.<br>> ><br>> > could use an <a \
onclick="return top.js.OpenExtLink(window,event,this)" href="http://assembla.com/" \
target="_blank">assembla.com</a> space for that.<br> ><br>> trac: <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://trac2.assembla.com/owaspdotnet/wiki" \
target="_blank">http://trac2.assembla.com/owaspdotnet/wiki</a> if anyone is<br>> \
interested. anyone can join, etc, etc.<br> ><br>> assembla home: <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://www.assembla.com/wiki/show/owaspdotnet" \
target="_blank">http://www.assembla.com/wiki/show/owaspdotnet</a><br>><br>> \
--<br> > <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://lets.coozi.com.au/" \
target="_blank">http://lets.coozi.com.au/</a><br>><br>> There's not a \
problem I can't fix, because I can do it in the mix.<br> > \
_______________________________________________<br>> Owasp-dotnet mailing \
list<br>> <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:Owasp-dotnet@lists.owasp.org" \
target="_blank">Owasp-dotnet@lists.owasp.org</a><br> > <a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="https://lists.owasp.org/mailman/listinfo/owasp-dotnet" \
target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-dotnet</a><br>><br>-------------- \
next part --------------<br> An HTML attachment was scrubbed...<br>URL: <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/41770534/attachment-0001.html" \
target="_blank">https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/41770534/attachment-0001.html</a><br>
<br>------------------------------<br><br>Message: 2<br>Date: Thu, 27 Mar 2008 \
09:18:28 -0500<br>From: "Dan Cornell" <<a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:dan@denimgroup.com" \
target="_blank">dan@denimgroup.com</a>><br>
Subject: Re: [Owasp-dotnet] .Net HTML parser library<br>To: "Jason Axley" \
<<a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:jason@axley.net" target="_blank">jason@axley.net</a>>, <<a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:michaelslists@gmail.com" \
target="_blank">michaelslists@gmail.com</a>><br>
Cc: <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet@lists.owasp.org" \
target="_blank">owasp-dotnet@lists.owasp.org</a><br>Message-ID:<br> \
<<a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:4122F6F18CC18A4FBE1DCBA11348F0AB0234450E@satmail.denimgroup.com" \
target="_blank">4122F6F18CC18A4FBE1DCBA11348F0AB0234450E@satmail.denimgroup.com</a>><br>
Content-Type: text/plain; charset="us-ascii"<br><br>I used the \
"csspider" code from Jeff Heaton<br><a onclick="return \
top.js.OpenExtLink(window,event,this)" href="http://www.jeffheaton.com/source" \
target="_blank">http://www.jeffheaton.com/source</a> as a base when I put together \
sprajax a<br> while back. The HTML parsing in there is _really_ basic but \
for a CSRF<br>Guard implementation you may want something that is that \
forgiving.<br><br><br><br>I made a couple of changes to make the parser more \
"event-based". My<br> updated code is available online \
here:<br><br><a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://code.google.com/p/sprajax/source/browse" \
target="_blank">http://code.google.com/p/sprajax/source/browse</a><br> \
<br><br><br>The code you would be looking for should be in Sprajax/csspider in \
the<br>Spider.Engine directory.<br><br><br><br>This is nowhere as full-featured as \
something like JTidy - this is<br>mainly just basic tag and attribute parsing so you \
would need to build a<br> lot of stuff on top of it. But it _may_ be \
better than starting \
from<br>scratch.<br><br><br><br>Thanks,<br><br><br><br>Dan<br><br><br><br>From: <a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-bounces@lists.owasp.org" \
target="_blank">owasp-dotnet-bounces@lists.owasp.org</a><br> [mailto:<a \
onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:owasp-dotnet-bounces@lists.owasp.org" \
target="_blank">owasp-dotnet-bounces@lists.owasp.org</a>] On Behalf Of Jason \
Axley<br>Sent: Thursday, March 27, 2008 12:51 AM<br>
To: <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:michaelslists@gmail.com" \
target="_blank">michaelslists@gmail.com</a><br>Cc: <a onclick="return \
top.js.OpenExtLink(window,event,this)" href="mailto:owasp-dotnet@lists.owasp.org" \
target="_blank">owasp-dotnet@lists.owasp.org</a><br>
Subject: Re: [Owasp-dotnet] .Net HTML parser library<br><br><br><br>It's for the \
.Net CSRF Guard. An attempt to implement at least the \
same<br>methodologies as exist in the Java version of the same. However, \
I'm<br> definitely with you. I'd prefer to skip it since there are \
some other<br>methods that seem to work fine. But, until I throw a complex \
real-world<br>application at them, I'm not sure if anyone knows metrics about \
which<br> one is better for performance and accuracy.<br><br>-Jason<br><br>silky \
wrote:<br><br>-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>On Thu, Mar 27, \
2008 at 4:17 PM, Jason \
Axley wrote:<br><br><br> Anyone \
know of a decent, free .Net HTML parser library? There<br> are a \
lot<br> for other languages but I \
don't want to reinvent any wheels for<br>.Net...<br><br><br><br>out of interest \
what do you want to for? any time i've considered<br>doign this, i've always \
tried to find another way around it, because<br> of the complexity \
...<br><br><br><br><br> -Jason<br><br><br><br>- \
--<br><a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://lets.coozi.com.au/" \
target="_blank">http://lets.coozi.com.au/</a><br><br> There's not a problem I \
can't fix, because I can do it in the mix.<br><br>-----BEGIN PGP \
SIGNATURE-----<br>Version: GnuPG v1.4.7 (MingW32)<br>Comment: <a onclick="return \
top.js.OpenExtLink(window,event,this)" href="http://firegpg.tuxfamily.org/" \
target="_blank">http://firegpg.tuxfamily.org</a><br> \
<br>iQEVAwUBR+s00U4i+6wd5ptaAQK+8Af9E7Vps2OjoG/F0XtFeJ+sPTtyF/Bi9M/A<br>jDjF193nfFwikw \
4Q6Q5pTr8WAPSgraKOsXhc53HNCK5/+4zxpZ0Rgi3Z4POEaZXl<br>eGg/HugOt4LeZ3ne8cq5IlapKjdUQS7u \
gna7dvgJjmTpx49drpQR/R4trFOO3lLZ<br>Xlbfjcm9qv6A+q2NNLb8KrJSdScckgm51SKtDR3Tj3JVc3qDjyqOkRC99jnVCmV0<br>
uaQQQvJxEpmlLoQBK2xQKlHNtFGhWDau//7fggIX6W37VHH081faBmPPK0jcTTk2<br>n/dGLNIaZhkaAmEys+ogOSaZqkhYfzXMwi54htVI4uj94qa/5J22tg==<br>=dkG9<br>-----END \
PGP SIGNATURE-----<br><br>!DSPAM:4,47eb34b348841701221578!<br><br><br><br><br> \
<br>-------------- next part --------------<br>An HTML attachment was \
scrubbed...<br>URL: <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/815d35a7/attachment-0001.html" \
target="_blank">https://lists.owasp.org/pipermail/owasp-dotnet/attachments/20080327/815d35a7/attachment-0001.html</a><br>
<br>------------------------------<br><br>_______________________________________________<br>Owasp-dotnet \
mailing list<br><a onclick="return top.js.OpenExtLink(window,event,this)" \
href="mailto:Owasp-dotnet@lists.owasp.org" \
target="_blank">Owasp-dotnet@lists.owasp.org</a><br> <a onclick="return \
top.js.OpenExtLink(window,event,this)" \
href="https://lists.owasp.org/mailman/listinfo/owasp-dotnet" \
target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-dotnet</a><br><br><br>End \
of Owasp-dotnet Digest, Vol 16, Issue 15<br>
********************************************<br></blockquote></span></div></div><br></blockquote></div><br>
_______________________________________________
Owasp-dotnet mailing list
Owasp-dotnet@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-dotnet
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic