This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP O2 Platform/Microsoft/CAT.NET"
From OWASP
Dinis.cruz (talk | contribs) (→download) |
Dinis.cruz (talk | contribs) (→related blog posts) |
||
Line 18: | Line 18: | ||
* [http://blogs.msdn.com/ace_team/archive/2009/11/30/infosec-a-p-suite-how-to-install-configure-the-tools.aspx InfoSec A&P Suite: How to Install & Configure] | * [http://blogs.msdn.com/ace_team/archive/2009/11/30/infosec-a-p-suite-how-to-install-configure-the-tools.aspx InfoSec A&P Suite: How to Install & Configure] | ||
* [http://it.toolbox.com/blogs/programming-life/new-tool-in-my-pouch-catnet-and-antixss-30--35613 New Tool In My Pouch: CAT.NET And Anti-XSS 3.0] | * [http://it.toolbox.com/blogs/programming-life/new-tool-in-my-pouch-catnet-and-antixss-30--35613 New Tool In My Pouch: CAT.NET And Anti-XSS 3.0] | ||
+ | * [http://blogs.msdn.com/infosec/archive/2009/11/16/infosec-assessment-protection-a-p-suite-released.aspx InfoSec Assessment & Protection (A&P) Suite Released] | ||
* [http://teamfoundationserver.wordpress.com/2009/11/25/security-tools-from-microsoft/ Security tools from Microsoft] (Tobias had some issues running the latest version) | * [http://teamfoundationserver.wordpress.com/2009/11/25/security-tools-from-microsoft/ Security tools from Microsoft] (Tobias had some issues running the latest version) | ||
+ | * from main CAT.NET Blog | ||
+ | ** [] | ||
+ | ** [] | ||
+ | ** [] | ||
+ | ** [] | ||
+ | ** [] | ||
+ | |||
+ | ** [http://blogs.msdn.com/securitytools/archive/2009/05/20/cat-net-how-big-do-your-project-files-grow.aspx CAT.NET – How Big Do Your Project Files Grow ?] | ||
+ | |||
== videos== | == videos== | ||
* [http://channel9.msdn.com/posts/Jossie/Assessment-and-Protection-Suite/ Assessment and Protection Suite] -''"... Anil Revuru (RV) and Mark Curphey, from Microsoft Information Security, introduce what would be in the future a suite of tools that will help you assess your code as well as protect it. This is called the Assessment & Protection (A&P) Suite and it includes the following tools: Web Protection Library (WPL) – which includes Anti-XSS, SRE, mitigation of SQL Injection, CSRF among others CAT.NET Web Application Configuration Analyzer (WACA) and room for more future add-ons ..."'' | * [http://channel9.msdn.com/posts/Jossie/Assessment-and-Protection-Suite/ Assessment and Protection Suite] -''"... Anil Revuru (RV) and Mark Curphey, from Microsoft Information Security, introduce what would be in the future a suite of tools that will help you assess your code as well as protect it. This is called the Assessment & Protection (A&P) Suite and it includes the following tools: Web Protection Library (WPL) – which includes Anti-XSS, SRE, mitigation of SQL Injection, CSRF among others CAT.NET Web Application Configuration Analyzer (WACA) and room for more future add-ons ..."'' |
Revision as of 12:03, 4 December 2009
current O2 support
- Dedicated O2 Module O2_Scanner_MsCatNet with support for
- finding target dlls (recursive search on local directories)
- triggering scans
- converting CAT.NET Results into O2's Findings schema
description
download
- CAT.NET 2.0 CTP (current version) (requires registration with Microsoft)
- CAT.NET v1 CTP - 32 bit (old version)
- O2 Scanner - MsCatNet
other relevant links
- InfoSec A&P Suite: How to Install & Configure
- New Tool In My Pouch: CAT.NET And Anti-XSS 3.0
- InfoSec Assessment & Protection (A&P) Suite Released
- Security tools from Microsoft (Tobias had some issues running the latest version)
- from main CAT.NET Blog
- []
- []
- []
- []
- []
videos
- Assessment and Protection Suite -"... Anil Revuru (RV) and Mark Curphey, from Microsoft Information Security, introduce what would be in the future a suite of tools that will help you assess your code as well as protect it. This is called the Assessment & Protection (A&P) Suite and it includes the following tools: Web Protection Library (WPL) – which includes Anti-XSS, SRE, mitigation of SQL Injection, CSRF among others CAT.NET Web Application Configuration Analyzer (WACA) and room for more future add-ons ..."
- MSDN Webcast: Managing Cross-Site Scripting Using CAT.NET and AntiXSS (Level 200)
go back to the main OWASP O2 Platform page