[prev in list] [next in list] [prev in thread] [next in thread]
List: owasp-dotnet
Subject: [Owasp-dotnet] An end of year review
From: Bill Sempf <bill.sempf () owasp ! org>
Date: 2015-12-13 23:31:25
Message-ID: CAMeH_=WkmD=5zvEMimNjWX2fhbGURy+=AYaLiuxTJZWirfrtPA () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
The .NET Project is about filling in the bits that the MSDN documentation
is missing. We have done well. So far, we have written:
- The .NET Security Cheat Sheet
- .NET Penetration Testing
- Exception Handling
- ASP.NET Request Validation
- ASP.NET Output Encoding
- Using Rfc2898DeriveBytes for PBKDF2
- Anti CSRF Tokens ASP.NET
We're entering the 2015 holiday season. Why not donate a little time to
write an article for OWASP, on a topic that interest you? Here's whats on
the list today:
- Windows Identity Foundation
- .NET Memory Management
- ASP.NET Identity
- DPAPI
- ClickOnce Deployment
- .NET Callbacks - Vulnerabilities and Remediation
- Dependency Injection
- IoC containers
- Preventing SQL Injection in ADO.NET
- Authenticated Symmetric Encryption in .NET
What's more, recommendations for bits that are missing are appreciated!
Solved a problem recently that reached into an undocumented part of the
framework? Write it up and donate it. We're all here to make this internet
thing a better place to hang out. Let's doo eet.
S
[Attachment #5 (text/html)]
<div dir="ltr"><br><div>The .NET Project is about filling in the bits that the MSDN \
documentation is missing. We have done well. So far, we have \
written:</div><div><br></div><div><div><ul><li>The .NET Security Cheat \
Sheet<br></li><li>.NET Penetration Testing<br></li><li>Exception \
Handling<br></li><li><a href="http://ASP.NET">ASP.NET</a> Request \
Validation<br></li><li><a href="http://ASP.NET">ASP.NET</a> Output \
Encoding<br></li><li>Using Rfc2898DeriveBytes for PBKDF2<br></li><li>Anti CSRF Tokens \
<a href="http://ASP.NET">ASP.NET</a><br></li></ul></div></div><div><br></div><div>We're \
entering the 2015 holiday season. Why not donate a little time to write an article \
for OWASP, on a topic that interest you? Here's whats on the list \
today:</div><div><ul><li>Windows Identity Foundation<br></li><li>.NET Memory \
Management<br></li><li><a href="http://ASP.NET">ASP.NET</a> \
Identity<br></li><li>DPAPI<br></li><li>ClickOnce Deployment<br></li><li>.NET \
Callbacks - Vulnerabilities and Remediation<br></li><li>Dependency \
Injection<br></li><li>IoC containers<br></li><li>Preventing SQL Injection in <a \
href="http://ADO.NET">ADO.NET</a><br></li><li>Authenticated Symmetric Encryption in \
.NET<br></li></ul></div><div><br></div><div>What's more, recommendations for bits \
that are missing are appreciated! Solved a problem recently that reached into an \
undocumented part of the framework? Write it up and donate it. We're all here \
to make this internet thing a better place to hang out. Let's doo \
eet.</div><div><br></div><div>S</div></div>
_______________________________________________
Owasp-dotnet mailing list
Owasp-dotnet@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-dotnet
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic