Automated Security Analyser for ASP.NET websites
Evil Hackers are lurking everywhere and many Web-applications are delicately and share “too much” with the attacker.
A quick (first!) overview offers the Tool “ASafaWeb”. All the website does is making a few requests and writing an Analyses including problem solving’s. There are no permanent disadvantages (bad requests/ DoS attacks and so on).
Example: KnowYourStack.com
There is a short description including a problem solving:
The last test recommends hiding the information’s about the ASP.NET version / IIS.
That’s not enough!
The service only provides very simple tests – For example there is no test for the entering validation. Here you need to be very carefully!
If someone wants to share more tips with us you are welcome J
Prevent the Top 10 Security holes!
Some time ago Philip Proplesch referred about the excellent Blog row from Troy Hunt: OWASP Top 10 for .NET developer’s part 1: Injection. Read!
„Sign in with Twitter“ for your own ASP.NET WebApp
“Sign in with Twitter” is a popular practice to authenticate the users on your website. One advantage compared to an own registration is the lower inhibition for the user. But on the other hand Twitter doesn’t fess up with all the information’s and you will get into a kind of addiction. At the end …
CodePlex is going to be updated
CodePlex the Microsoft Open Source Project Hosting Plattform hasn’t changed that much in the last few years and for a few times I thought Microsoft stopped the whole developing process. But now I found out that there is still life in the project. Maybe it is because of the success of GitHub or because …
What does Adobe in the flash-free web? Magazine-Style Layouts with CSS Regions!
Adobe is well known for Photoshop and Flash but of course there is a lot more. According to the “Future Post” from Google Adobe declared one of their big subjects on a Blogpost. I’m talking about the W3C Working Draft to CSS Regions. Adobe cooperates with the WebKit Team and W3C on this. What …
HTML 5 Games, Tooling & 3D
Game Developing is an interesting subject for all kind of software developer. But as a web developer without any Flash-skills there aren’t that much starting points. With HTML5 and the combination between Javascript, CSS3 and fast browsers there are the first “robust” HTML5 games. HTML5 games? Is this real? Neowin created a “Top 10” …
Free Online-Tutorial „30 Days to Learn jQuery“
There is a free online Tutorial about jQuery in English on Tuts + premium. The tutorial includes Basics, Effects, Plugin-development, AJAX and more. The videos are from a few minutes till 45 minutes. I’ve taken a look on a few videos so far and I saw the whole “this” Keyword video – it’s worth! …
Speech Input API – speech input with an attribute in the Web?
By accident I found the page of code.nasa.org today. A little icon showing a microphone cached my attention: Since Chrome 11 there is a “support” for the Speech Input API. I’ve read about this but in fact I thought the integration would be more extensive. Surprisingly the implementation is very easy – with the …
Git-Pull Request mergen for beginners
My project “KnowYourStack.com” (the working title was BizzBingo – a detailed blogpost will follow soon) lays on GitHub and I’ve recognized a Problem where Daniel Lang helped me a lot. At the end he created a Fork for my Project and laid a Pull Request: The question is: How do I transfer the changes to …
Carriage Return / new line in Textareas
A little task: each new text line (Carriage Return/ if you press enter ) in a Textarea should be an element on a list – so what’s the easiest way? Actual a basic element in the web and the user make aware distributions – so it would be fair to dignify it. Little MVC …
WebDev Playground: dabblet.com for HTML/CSS, jsfiddler.com for JS & HUrl.it for REST
What was reserved for mighty Desktop Apps in the past is now coming closer to the web. I’ve going to present three tools to you which are very useful for web developer. At least all the tools are quite cool in there functionality. Playground for HTML/CSS If you need a quick Playground for CSS …
Recent comments