https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=MuratkayaOWASP - User contributions [en]2026-04-30T16:12:51ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=User:Muratkaya&diff=237025User:Muratkaya2018-01-24T13:33:40Z<p>Muratkaya: Date, title etc.</p>
<hr />
<div>Hello,<br />
<br />
My name is Murat Kaya, 39 years old, programmer, researcher and IT security consultant.<br />
I am working on information&software security over 15 years.<br />
I have some security related certificates such as Comptia Security+, MCSE+S, CWSP/CWNP, C|EH 6.1 and some local certifications/courses in Turkey<br />
Mostly using linux (suse and debian)<br />
Coding skills in php, perl, python, c/c++, delphi, .net, javascript, node.js and more.. <br />
Currently working at very large scale firm (8000~ emp.) in Turkey as a application security and information security specialist for 8 years.</div>Muratkayahttps://wiki.owasp.org/index.php?title=OWASP_.NET_Vulnerability_Research&diff=237024OWASP .NET Vulnerability Research2018-01-24T13:32:10Z<p>Muratkaya: /* Core Technologies */</p>
<hr />
<div>{{taggedDocument<br />
| type=inactiveDraft<br />
}}<br />
<br />
The OWASP .NET <br />
[[Category:Vulnerability]]<br />
Research section is for tracking vulnerability research of .NET core technologies and popular platforms that use it.<br />
<br />
==Core Technologies==<br />
* Research for ASP.NET CORE<br />
* [[Research for ASP.NET Membership]]<br />
* [[Research for ASP.NET MVC]]<br />
* [[Research for ASP.NET AJAX]]<br />
* [[Research for WCF]]<br />
* [[Research for Silverlight]]<br />
* [[Research for Linq]]<br />
<br />
==Platforms==<br />
* Research for Azure Platform<br />
* [[Research for Sharepoint]]<br />
* [[Research for Community Server]]<br />
* [[Research for DotNetNuke]]<br />
* [[Research for FlexWiki]]<br />
* [[Research for ScrewTurn Wiki]]<br />
<br />
[[Category:OWASP .NET Project]]</div>Muratkayahttps://wiki.owasp.org/index.php?title=.NET_Penetration_Testing&diff=237023.NET Penetration Testing2018-01-24T13:29:06Z<p>Muratkaya: /* Online Media (Podcasts, Webcasts, Presentations, eBooks etc.) */ deprecated.</p>
<hr />
<div>{| class="wikitable" align="right"<br />
|-<br />
! .NET Security Quick Reference<br />
|- <br />
| <br />
*[[OWASP WebGoat Project]]<br /><br />
|-<br />
|}<br />
==.NET Penetration Testing==<br />
Plan, Discover, Attack and Report - this section is for tools, checklists and references for penetration testing .NET web applications and services.<br />
<br />
===Areas of Concern===<br />
*Planning the hack<br />
<br />
*Ethically hacking<br />
<br />
*Attack Vectors<br />
<br />
*Intelligence gathering<br />
<br />
*Reporting<br />
<br />
===Blogs, Articles & Projects===<br />
[[OWASP .NET Vulnerability Research]]<br />
<br />
[https://www.microsoft.com/en-us/sdl Microsoft SDL (Secure Development Lifecycle)]<br />
<br />
[https://docs.microsoft.com/en-us/aspnet/core/security/ .NET CORE Security]<br />
<br />
[https://blogs.technet.microsoft.com/msrc/ Microsoft Security Research Center (MSRC)]<br />
<br />
===References===<br />
[http://www.owasp.org/index.php/Rooting_The_CLR Rooting the CLR (Draft)]<br />
<br />
[http://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf NIST 800-42 Guideline on Network Security Testing]<br />
<br />
[http://www.isecom.org/osstmm ISECOM Open Source Security Testing Methodology Manual]<br />
<br />
[http://www.oissg.org/issaf/index.php OISSG Information Systems Security Assessment Framework (ISSAF)]<br />
<br />
===Tools===<br />
[http://www.owasp.org/index.php/Source_Code_Audit_Tools Source Code Audit Tools]</div>Muratkaya