This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP .NET Recommended Resources"
(→General) |
|||
| Line 20: | Line 20: | ||
*OWASP Guidance and Tools | *OWASP Guidance and Tools | ||
| + | |||
| + | ===Blogs & People=== | ||
| + | |||
| + | ===== OWASP ===== | ||
| + | ; [https://lists.owasp.org/pipermail/owasp-phoenix/2009-May/000079.html OWASP-Phoenix List Reply regarding GSSP .NET Cert] from [http://twitter.com/atdre Dre] | ||
| + | |||
| + | ==== General ==== | ||
| + | [http://securitybuddha.com/ Mark Curphrey's Blog] | ||
| + | |||
| + | [http://blogs.msdn.com/michael_howard/default.aspx Michael Howard's Blog] | ||
| + | |||
| + | [http://blogs.msdn.com/jmeier/archive/tags/Security+Development/default.aspx J.D. Meier's Blog] | ||
| + | |||
| + | [http://www.leastprivilege.com Dominick Baier's Blog] | ||
| + | |||
| + | [http://blogs.msdn.com/shawnfa/default.aspx Shawn Farkas' Blog] | ||
| + | |||
| + | [http://blogs.msdn.com/ace_team/ Microsoft's ACE Team] | ||
===Advisories, Articles & Projects=== | ===Advisories, Articles & Projects=== | ||
| Line 84: | Line 102: | ||
[http://support.microsoft.com/kb/954476 MS Source Code Analyser for SQL Injection] | [http://support.microsoft.com/kb/954476 MS Source Code Analyser for SQL Injection] | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
Revision as of 20:03, 7 May 2009
| OWASP .NET Quick Reference |
|---|
OWASP .NET Recommended Resources
Areas of Concern
- Getting Started
- Tutorials
- Best Practices
- OWASP Guidance and Tools
Blogs & People
OWASP
General
Advisories, Articles & Projects
Security and Operational Guidance for .NET Applications
patterns & practices Security Engineering Index
patterns & practices Security Guidance for Applications Index
patterns & practices Security Guidance for .NET Framework 2.0
Authentication in ASP.NET: .NET Security Guidance
Security Guidance for Windows Communication Foundation
Microsoft Security Advisory (954462) (SQL Injection Advisory)
Online References
Patterns and Practices Security Wiki
MSDN Security Developer Center
Books and Publications
Writing Secure Code, Michael Howard and David LeBlanc
Microsoft Security Development Lifecycle 3.2
Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication, J.D. Meier, Alex Mackman, Michael Dunner, and Srinath Vasireddy
Improving Web Application Security: Threats and Countermeasures, J.D. Meier, Alex Mackman, Michael Dunner, Srinath Vasireddy, Ray Escamilla and Anandha Murukan
Developer Highway Code, Microsoft Corp, United Kingdom
Tools
Microsoft Threat Analysis & Modeling v2.1.2
Patterns and Practices Guidance Explorer
Security Code Review Checklist Generator
