|
top |
| Title /
Updated |
Author |
Score |
|
Salient.Web.Security.AccessControlModule
- Unedited
Updated: 18 Aug 2009
AccessControlModule can impart a greater consistency and usability upon the default behaviour of FormsAuthentication and allow any client script code to leverage FormsAuthentication in a straight forward manner.
C#, Javascript, CSS, HTML, XHTML, Windows, .NET, ASP, ASP.NET, IIS (IIS 5.1, IIS 6), WebForms, Ajax
|
Sky Sanders |
5.00 |
|
Securing ASP.NET Applications
- Unedited
Updated: 9 Apr 2009
This article takes a look at two recent attacks on web applications and how they were perpetrated. Then it dives head first into a litany of different potential security holes and more importantly, how to plug them in ASP.Net.
ASP.NET, Dev
|
Gil Shabat |
4.78 |
|
Protect Files and Folders Using HttpHandlers in ASP.NET
Updated: 6 Oct 2009
A quick walkthrough showing how to protect files and folders using HttpHandlers, in VB.NET and C#.
C#, VB, XML, .NET, ASP.NET, WebForms, Dev
|
Stuart Blackler |
4.71 |
|
Role-based Security with Forms Authentication
Updated: 26 Jul 2009
Provides insight and tips on using role-based (groups) Forms Authentication in ASP.NET, which has only partial support for roles.
C#, Windows, .NET 1.0, .NET 1.1, ASP.NET, Visual Studio, Dev
|
Heath Stewart |
4.67 |
|
CAPTCHA Image in PHP
Updated: 23 Feb 2009
This article demonstrates how we can create a CAPTCHA image with PHP
Windows, Linux, IIS, PHP, Apache, Dev
|
Mohammad Dayyan |
4.65 |
|
Webserver Security Check
Updated: 24 Oct 2009
This article contains a security check script and describes how to secure Windows and Linux webservers against hackers.
ASP, PHP
|
Elmue |
4.64 |
|
Switching Between HTTP and HTTPS Automatically: Version 2
Updated: 12 Dec 2008
An article on automatically switching between HTTP and HTTPS protocols without hard-coding absolute URLs
C#, VB.NET 1.1, .NET 2.0, Win2K, WinXP, Win2003, ASP.NET, VS.NET2003, VS2005, Dev
|
Matt Sollars |
4.63 |
|
HttpSecureCookie, A Way to Encrypt Cookies with ASP.NET 2.0
Updated: 3 Apr 2006
Discussing how to encode and tamper-proof text and cookies using the MachineKey, by using reflection.
C#, Windows, .NET 2.0, ASP.NET, VS2005, Dev
|
Adam Tibi |
4.63 |
|
Forms authentication and Role based authorization: a quicker, simpler, and correct approach
Updated: 30 May 2009
This article describes a correct and smarter way of implementing Role based authorization with Forms authentication in ASP.NET.
C#, Windows, .NET, ASP.NET, Architect, Dev
|
M.M.Al-Farooque Shubho |
4.61 |
|
Cross Domain/Platform Authentication and Data Transfer
Updated: 29 Dec 2008
Introduces a methodology for authenticating user in cross domain/platform and transferring user data from one site to another during the authentication process.
C# (C# 2.0), SQL, .NET (.NET 2.0), ASP.NET, SQL Server (SQL 2005), WebForms, Dev
|
Tomz_KV |
4.57 |
|
Top 10 Application Security Vulnerabilities in Web.config Files - Part Two
Updated: 22 May 2007
In this second part of a two-part series, you will learn about application security issues related to authentication and authorization, as well as five vulnerabilities commonly found in ASP.NET web-based applications.
XML, Windows, .NET, ASP.NET, Visual Studio, WebForms, Dev, SysAdmin
|
Bryan_Sullivan |
4.53 |
|
Protect non-.NET Assets Using a .NET Reverse Proxy with Forms Authentication and ISAPI
Updated: 27 Aug 2006
How to protect secure assets using a .NET Reverse Proxy, an ISAPI redirection filter and .NET Forms Authentication
VB, XML, VC6.NET 2.0, Win2K, WinXP, Win2003, Vista, ASP.NET, MFC, IIS 5.1, IIS 6, VS2005, Architect, Dev
|
Toby Emden |
4.50 |
|
How To : Using Phpbb3 CAPTCHA
Updated: 12 Feb 2009
Using PHPBB3 CAPTCHA
Linux, PHP, Apache, Dev
|
Mohammad Dayyan |
4.50 |
|
Discretionary ACL Authorization Security Model in Web Applications with NHibernate
Updated: 27 Feb 2009
A practical object-level security approach.
C#, XML, SQL, Windows, .NET, ASP.NET, Architect, Dev
|
dB. |
4.50 |
|
Server-side fix for the Universal PDF XSS Vulnerability
Updated: 24 Apr 2007
This article describes a server-side fix for the recently discovered vulnerability in the PDF reader plugin by Adobe.
C# 2.0.NET 2.0, Win2K, WinXP, Win2003, Vista, ASP.NET, IIS, WebForms, VS.NET2003, VS2005, Architect, Dev
|
Sidney Chong |
4.47 |
|
Captcha Plug-in in CodeIgniter
Updated: 29 Jul 2008
How to use thr captcha plugin in CodeIgniter.
PHP, Dev
|
Mohammad Jahedur Rahman |
4.38 |
|
Restricting Access to trace.axd using IIS Basic Authentication
Updated: 15 Sep 2004
A technique to use the IIS Basic Authentication mechanism to control access to trace.axd.
Windows, .NET, ASP.NET, Visual Studio, IIS 5.1, IIS 6, Dev
|
ChrisAdams |
4.33 |
|
Web Service and IIS Security hurdles
Updated: 27 Jan 2006
How to configure IIS in order to enable the use of Named Kernel Objects in Web Services.
C#, .NET, WinXP, Win2003, ASP.NET, Visual Studio, IIS 6, Dev
|
Cohen Shwartz Oren |
4.31 |
|
Encrypting Cookies to prevent tampering
Updated: 23 Dec 2004
In this article, we talk about the lack of Cookie security built-into the ASP.NET framework, and a decent workaround to provide integrated tamper proof security for cookie data.
C#, Windows, .NET 1.0, .NET 1.1, ASP.NET, Visual Studio, Dev
|
Eric Newton |
4.16 |
|
TripleDES Encrypted Configuration File
Updated: 29 Feb 2004
How to make your server settings safer
.NET, Win2K, WinXP, Win2003, ASP.NET, Visual Studio, Dev
|
Matthew Hazlett |
4.14 |
|
A Windows logon, web user control implementation - in ASP.NET
Updated: 24 Nov 2003
A classic example of implementing reusable web user control, with supporting controls and classes to keep the code manageable.
.NET 1.0, .NET 1.1, Win2K, WinXP, Win2003, ASP.NET, Visual Studio, Dev
|
Harish Palaniappan |
4.12 |
|
Single sign-on across multiple applications in ASP.NET
Updated: 31 Mar 2004
By default, Forms authentication does not support single sing-on accross multiple applications. But is not too complicated to tweak it the appropriate way.
VB, Windows, .NET 1.0, .NET 1.1, ASP.NET, Visual Studio, Dev
|
Michal Altair Valasek |
4.05 |
|
Securing Images under Forms-Based Authentication in ASP.NET Applications
Updated: 21 Oct 2002
Allows Forms-based authentication to work on non-parsed files such as images.
VB, Windows, .NET 1.0, ASP.NET, Visual Studio, Dev
|
James Coleman |
4.00 |
|
Using SSL with System.Web.Management.MailWebEventProvider
Updated: 25 Oct 2007
The Decorator pattern meets Reflection in a workaround to enable SSL for ASP.NET health monitoring e-mail event providers.
C# 2.0, Windows, .NET 2.0, .NET 3.0, ASP.NET, WebForms, VS2005, Dev
|
Svante Seleborg |
4.00 |
|
Secure Persistent ASP.NET Forms Authentication
Updated: 27 Aug 2008
An ASP.NET system for having two authentication cookies, one secure and one insecure, to have multiple tiers of security by folder.
VB (VB 8.0, VB 9.0), .NET (.NET 2.0, .NET 3.0, .NET 3.5), ASP.NET, VS2005, VS2008, Dev
|
BrantBurnett |
4.00 |
|
Authorization Security Model in Web Applications Using .NET Attributes
Updated: 26 Jul 2008
This article talks about the authorization security model in Web applications using .NET attributes.
C# (C# 2.0, C# 3.0), .NET (.NET 2.0, .NET 3.0), ASP.NET, Architect, Dev
|
Samer Abu Rabie |
4.00 |
|
Security Tips for Temporary File Usage in Applications
Updated: 12 Oct 2006
Educate yourself on security best practices for temporary file usage in software applications.
Windows, .NET, ASP.NET, Visual Studio, Architect, Dev
|
Richard Lewis |
3.94 |
|
Securing image URLs in a website
Updated: 21 Apr 2004
How to hide image URLs on a website to avoid illegal access, using a custom HttpHandler and encryption.
Windows, .NET, ASP.NET, Visual Studio, Dev
|
yvdh |
3.93 |
|
Simple HTTP Reverse Proxy with ASP.NET and IIS
Updated: 22 May 2004
Learn how easy it is to create HTTP Reverse Proxy in .NET using IIS.
C#.NET 1.1, Win2K, WinXP, Win2003, ASP.NET, Visual Studio, Dev
|
Vincent Brossier |
3.92 |
|
Client Side Hashing using JQuery
Updated: 2 Jun 2009
Client side text hashing using JQuery
C# (C# 1.0, C# 2.0, C# 3.0), Windows, ASP.NET
|
sagnik mukherjee |
3.91 |
|
Secure File Download Using Basic Authentication
Updated: 19 Mar 2006
Secure file download using Basic Authentication. The interesting part is that we maintain two separate entry points for uploading and downloading a file.
C#, HTML, .NET, Win2K, WinXP, Win2003, ASP.NET, IIS, Visual Studio, IE 6.0, Dev
|
Mohd Faraz (Lucky) |
3.86 |
|
Custom Authentication provider by implementing IHttpModule, IPrincipal and IIdentity
Updated: 2 Nov 2003
An article on writing Custom Authentication provider in ASP.NET
C#, Windows, .NET 1.0, ASP.NET, Dev
|
I Piscean |
3.85 |
|
Top 10 Application Security Vulnerabilities in Web.config Files - Part One
Updated: 3 May 2007
In part one of this two part article, you will learn about five of the top ten “worst offenders” of misconfigurations of application security that can cause overall problems for ASP.NET Web-based applications. Learn more about how to secure the Web.config files of an ASP.NET application.
XML, Windows, .NET, ASP.NET, Visual Studio, WebForms, Dev, QA, SysAdmin
|
Bryan_Sullivan |
3.82 |
|
How to : Using PHP Fusion 7 CAPTCHA
- Unedited
Updated: 12 Feb 2009
Shows you how using PHP Fusion 7 CAPTCHA class
Linux, PHP, Apache, MySQL
|
Mohammad Dayyan |
3.80 |
|
SQL injection attacks
Updated: 18 Jul 2005
An article on SQL injection attacks.
C#, SQL, Windows, .NET, ASP.NET, Visual Studio, SQL 2000, DBA, Dev
|
Invincible Poison |
3.74 |
|
Encrypt Password Field in SQL Server, Registry Information & Query String
Updated: 13 Jan 2003
How to encrypt the database password field, registry information and query string.
VB.NET 1.0, Win2K, WinXP, ASP.NET, Visual Studio, Dev
|
Syed Adnan Ahmed |
3.74 |
|
Cookieless ASP.NET forms authentication
Updated: 25 Aug 2002
They say it is not possible to use cookieless forms authentication in .NET. Well it is, and relatively easy to accomplish!
C#, Windows, .NET 1.0, ASP.NET, Visual Studio, Dev
|
brutal |
3.71 |
|
Custom membership provider for the ADO.NET Entity Framework
Updated: 29 Oct 2008
Custom membership provider implementation for the ADO.NET Entity Framework.
C#, Javascript, XML, CSS, HTML, XHTML, ASP, ASP.NET, WebForms, Ajax, Dev
|
Michael Ulmann |
3.68 |
|
Make ClickOnce Work With ASP.NET Forms Authentication
Updated: 20 Mar 2008
A solution for securing access to a ClickOnce application using ASP.NET Forms authentication.
VB (VB 8.0, VB 9.0), .NET (.NET 2.0, .NET 3.0, .NET 3.5), ASP.NET, IIS (IIS 6, IIS 7), WPF, Architect, Dev
|
David P Henry, Graham Murray |
3.67 |
|
Encrypt and Decrypt Data with C#
Updated: 17 May 2006
Encrypt and Decrypt important data with C# and play
C#, Windows, .NET, Visual Studio, Dev
|
Syed Moshiur Murshed |
3.63 |
|
.NET Role-Based Security in a Production Environment
- Unedited
Updated: 19 May 2008
Edit web.config to Update the Data Provider for Shared Hosting with Role-Based Security: SQL Server, ODBC, Active Directory, ADAM, SQLite, MySQL, Access, XML
.NET (.NET 2.0, .NET 3.0, .NET 3.5), ASP.NET, WebForms, Architect, Dev
|
Ralph in Boise |
3.58 |
|
Extending Forms Authentication - Windows or Custom Authentication
Updated: 28 May 2004
Combines Forms Authentication with Windows or Custom Authenticator.
C#, Windows, .NET 1.1, ASP.NET, Visual Studio, Dev
|
McGiv |
3.57 |
|
Form authentication and authorization in ASP.NET
Updated: 21 Apr 2006
This article will explain how to secure websites using the ASP.NET Forms Authentication.
C#, XML, .NET, Win2K, WinXP, ASP.NET, Visual Studio, Dev
|
Ahmed jamil Kattan |
3.39 |
|
Using HTTP Modules To Combat Leeching
Updated: 3 Dec 2003
An article to demonstrate how HTTP Module-based filtering can prevent leeching.
VB, .NET, Win2K, WinXP, Win2003, ASP.NET, Visual Studio, Dev
|
KingLeon |
3.33 |
|
Additional functionality for ASP.NET 2.0's CookieParameter
Updated: 6 Nov 2004
This article addresses some missing functionality in ASP.NET 2.0's CookieParameter type, including getting a multi-valued cookie Key value and providing some HttpCookieEncryption support.
C#, Windows, .NET 2.0, ASP.NET, Visual Studio, Dev
|
Eric Newton |
3.33 |
|
Query string encryption for ASP.NET
Updated: 7 May 2008
Clear text query strings are a potential security threat for your web application. Thus, query strings should always be encrypted.
C#, Javascript, CSS, HTML, ASP, ASP.NET, WebForms, Ajax, Dev
|
Michael Ulmann |
3.24 |
|
Pass-Through Security Authentication (Single Sign-on) using ASP.NET
Updated: 9 Sep 2004
The Pass-Through authentication enables a user to sign-on to their intranet and access other web applications without being asked for login again.
C#, XML, VC7, VC7.1, VC8.0, .NET CF, Mobile, .NET 1.0, .NET 1.1, Win2K, WinXP, Win2003, ASP.NET, VS.NET2003, Dev
|
Jayakanthan |
3.00 |
|
Digest Calculator
Updated: 24 Oct 2008
This article explains a simple way of implementing digest protocol in C#. A sample application is provided which shows step by step digest calculation.
C#.NET 3.0, .NET 3.5, Architect, Dev
|
sri.krish |
3.00 |
|
Preventing Automated / Dictionary Login Attacks without the use of CAPTCHA
Updated: 9 Jan 2005
A simple way to prevent automated / dictionary login attacks without the use of CAPTCHA (Completely Automated Public Turing Test to Tell Computers and Humans Apart) images.
C#, Windows, .NET, ASP.NET, Visual Studio, WebForms, Dev
|
JohnnyUSA |
2.98 |
|
Securely Run the ASP.NET Worker Process as the System Account
Updated: 27 Jan 2004
Describes the proper way to configure a server to securely run the ASP.NET worker process runs as the system account.
VC7, VC7.1, VC8.0, Windows, .NET 1.0, .NET 1.1, ASP.NET, Visual Studio, MFC, ATL, WTL, STL, Dev
|
David Coe |
2.93 |
|
Prevent attacks on your website
Updated: 6 Jul 2005
Using a simple example, I'll explain how to prevent a program that can register thousands of dummy users to your database and play with your database and application performance.
C#, SQL, Windows, .NET 1.1, ASP.NET, COM, ADO.NET, WinForms, WebForms, VS.NET2003, DBA, Dev, QA
|
Prakash Kalakoti |
2.86 |
|
Roles-Based Authentication
Updated: 22 May 2003
Implement a Roles-Based Authentication using ASP.NET Forms Authentication
C#.NET 1.0, Win2K, WinXP, ASP.NET, Dev
|
Zek3vil |
2.86 |
|
Extending ASP.NET 2.0 security
Updated: 23 May 2006
The current implementation of ASP.NET 2.0's security is great and I have fallen in love with it, but it's still too limited. I will show you how to extend ASP.NET 2.0's security using a custom HTTP Handler and your existing Web.sitemap.
C#, XML, Windows, .NET 2.0, ASP.NET, WebForms, VS2005, Dev
|
Joel Thoms |
2.84 |
|
Application Extension Mapping in a Shared Server Hosting Enviornment
Updated: 11 Jul 2005
Protect any file type in a certain folder with login.
C#, XML, Windows, .NET 1.1, ASP.NET, IIS, VS.NET2003, Dev
|
FredParcells |
2.83 |
|
Removing SQL Injection on PHP and MySQL Based Architecture
Updated: 19 Oct 2009
A short guide on how to remove SQL Injection, with reusable code
SQL, Windows, Linux, PHP, Dev, Design
|
CalvinHartwell |
2.78 |
|
Rule Based Security using Microsoft Enterprise Library and CAS
Updated: 7 Nov 2008
In this article I’ll explain a solution to secure web applications using custom membership and role providers with the Enterprise Library Security Application Block and code access security.
C#, ASP.NET, Dev
|
Ahmed Shokr |
2.75 |
|
How to make your app secure
Updated: 27 Jan 2005
If you are into development or quality assurance of enterprise solutions, you must be aware of the security aspect of your application. This article provides a checklist for the same...
C#, SQL, Windows, .NET, ASP.NET, Visual Studio, SQL 2000, Architect, DBA, Dev, QA
|
Salil Khedkar |
2.57 |
|
Enhanced and Secure Connection Strings in Web.Config
Updated: 25 Jan 2003
Here we would discuss some simple steps, which would facilitate keeping our database connection strings safe and encrypted in Web.Config.
C#, VB.NET 1.0, Win2K, WinXP, ASP.NET, Visual Studio, Dev
|
Vasudevan Deepak Kumar |
2.51 |
|
Encrypt sensitive information in web.config file
Updated: 14 Apr 2007
Encrypt sensitive information in web.config file
XML, Windows, .NET, ASP.NET, Visual Studio, WebForms, Dev
|
pgindia |
2.50 |
|
BaseWeb ISAPI Security Module
Updated: 22 Mar 2005
This article details a way to perform web security much like ASP 2.0 does it, using an ISAPI Filter.
C#, Windows, .NET, ASP.NET, IIS 6, VS.NET2003, Dev
|
Christopher G. Lasater |
2.25 |
|
Addressing Vulnerabilities in JavaScript in ASP.NET Web Sites
Updated: 8 Sep 2009
This describes some of the potential security concerns caused by common programming techniques and how to get around them.
Javascript, ASP.NET, Architect, Dev
|
Scott Norberg |
2.20 |
|
Rationalizing access checks with HMAC:ed URLs
Updated: 16 Oct 2004
An article on rationalizing away some access cheks for protected ASP.NET resources, while maintaining client side cacheability.
C#, VC7, VC7.1, VC8.0, Windows, .NET 1.0, .NET 1.1, .NET 2.0, ASP.NET, Visual Studio, Architect, Dev
|
Hugo Hallman |
2.00 |
|
Simple Captcha with ASP.NET
Updated: 5 Aug 2005
Simple text to image generator to block spammers inserting data to your database, with ASP.NET.
C#, Windows, .NET, ASP.NET, Visual Studio, Dev
|
Oguz Altuncu |
1.96 |
|
Sending Authenticated e-mail in ASP.NET 2.0
Updated: 6 Feb 2006
How to send authenticated e-mail from ASP.NET (login/password)
Windows, .NET, ASP.NET, Visual Studio, WebForms, Dev
|
Catalin Radoi |
1.69 |
|
How security is very much like MMA
- Unedited
Updated: 20 Sep 2009
It occurred to me after following the most recent UFC MMA (via the web blogs rather than PPV as I’m still too cheap!) that security and MMA have a lot in common. More precisely the fighters in a stable as very similar to security algorithms or process.
C++, Windows, Dev
|
GarethI |
1.00 |
|
