Click here to Skip to main content
14,550,721 members

security

Great Reads

by Unknown Author
Learn how to inject your 4.5 framework .NET application into a C++ unmanaged host application. Fast, Secure & without any extra tool or library.
by Unknown Author
Chrome stores all passwords and other credentials in an encrypted database but guess what: they can be retrieved by anyone with the proper knowledge. This article will show you how.
by Unknown Author
The objective of writing this paper is to manifest, how to crack an executable without peeping its source code by exercising OllyDbg tool.
by Kewin Rausch
An introduction on how these applications self-defend themselves against scanning techniques, and how they could have evolved from simple and naive forms to more sophisticated ones.

Latest Articles

by Unknown Author
The HttpClient can cause a security issue depending on how it is used so this article explains how to prevent that.
by Unknown Author
Working with decrypted data only in memory leaving no traces in hard-drive
by Unknown Author
This article demonstrates how to add Identity-Based Authentication in .NET Core 3.0 using In-Memory Database.
by Unknown Author
EnableX is a communication platform for embedding video/voice calls and messaging into any apps and sites. Built on a carrier-grade platform, it offers developers with all the necessary toolkits to develop engaging communication experience from one-to-one chats to large-scale broadcast/Webinar.

All Articles

Sort by Updated

security 

31 Jan 2020
Unknown Author
This article demonstrates how to add Identity-Based Authentication in .NET Core 3.0 using In-Memory Database.
1 Oct 2019
Unknown Author
EnableX is a communication platform for embedding video/voice calls and messaging into any apps and sites. Built on a carrier-grade platform, it offers developers with all the necessary toolkits to develop engaging communication experience from one-to-one chats to large-scale broadcast/Webinar.
27 Aug 2019
Unknown Author
This article discusses the idea of Hot Patching C/C++ functions using Intel Pin in order to remove known vulnerabilities
3 Jul 2019
Unknown Author
401 and/or 403 and a short story of secure RESTful
6 May 2019
Unknown Author, Apriorit Inc, Unknown Author
With a step-by-step example of reverse engineering an application.
15 Mar 2019
Apriorit Inc
We analyze the pros and cons of formal verification.
18 Feb 2019
Apriorit Inc, Unknown Author
A detailed description of an FPGA-specific framework called ISE Design Suite, and the main steps you need to take in order to create a VGA driver using FPGA
5 Feb 2019
Apriorit Inc
The experience of creating a custom blockchain network using the Graphene framework.
24 Jan 2019
Apriorit Inc
The article is about smart security contract in Cardano and Zilliqa with a description of testing both networks.
22 Jan 2019
Apriorit Inc, Unknown Author
Learn how you can use ftrace to hook critical function calls in the Linux kernel
17 Jan 2019
Apriorit Inc
In this article, we focus on the main ftrace pros and cons and describe some unexpected surprises we’ve faced when hooking Linux kernel functions with this utility.
9 Jan 2019
Apriorit Inc
Two theoretical ways to protect a Linux kernel module from hooks.
17 Dec 2018
Unknown Author
More than often, developers test API, either through a browser request or using some clients such as POSTMAN, Advanced Rest Client (ARC).
10 Nov 2018
Unknown Author
What is Azure Key Vault and where is it useful?
8 Nov 2018
Unknown Author
Overview of encryption at rest, in motion and in use with Azure Encryption
2 Nov 2018
Unknown Author
In this article, I will show the reader how to secure a web application based on Spring Boot and WAR archive, using the Spring Security and Tags. The application will have a login page, page access based on user roles, login failure, and access denied pages.
30 Aug 2018
Unknown Author
Cyber Security techniques for web sites
13 Aug 2018
Bryian Tan
This article shares the idea on how to utilize free tools to download log files from server, upload IIS log files into the database, display the results and compare the baseline and production files.
6 Aug 2018
Unknown Author
A password protected door lock based on Arduino which can be controlled by a smartphone over Bluetooth.
16 Jul 2018
Unknown Author
A technique for securing Angular 2/6 applications
16 Jul 2018
Unknown Author
Part 2 of how to add security to your Angular applications.
17 May 2018
Unknown Author
This article provides an overview of ASP.NET Core security features.
30 Apr 2018
Ryan G Conrad
Using Powershell and Windows Task Scheduler API to detect malicious login attempts on a remotely accessible SQL Server database
14 Apr 2018
Kewin Rausch
An introduction on how these applications self-defend themselves against scanning techniques, and how they could have evolved from simple and naive forms to more sophisticated ones.
25 Mar 2018
Ryan G Conrad
Prevent brute-force login attacks on a remotely accessible SQL Server database using T-SQL
25 Mar 2018
Ryan G Conrad
Additional logging and data collection
25 Mar 2018
Unknown Author
Learn how to inject your 4.5 framework .NET application into a C++ unmanaged host application. Fast, Secure & without any extra tool or library.
10 Mar 2018
Joe Dillon
This article describes the security techniques required to create a secure offline password manager and how the Libsodium library has been used to achieve this. YAPM stores passwords with AES encryption and authenticates users with an Argon2 hash.
4 Sep 2017
Bart-Jan Brouwer
Learn how to create JWT and use with WebApi, REST and MVC all build with .Net Core
4 Sep 2017
Bart-Jan Brouwer
Learn how to create JWT and use with WebApi, REST and MVC all build with .Net Core
4 Sep 2017
Bart-Jan Brouwer
Learn how to create JWT and use with WebApi, REST and MVC all build with .Net Core
29 May 2017
Veronica S. Zotali
This article shows how to configure IdentityServer3, when you need to authenticate and authorize usage of your WebAPI/MVC, for users stored in SQL Server.
24 Feb 2017
Unknown Author
It is important to institute optimal security capabilities as part of the design and core functions (Hardware, Firmware, OS/RTOS, software, endpoints, networks, etc.) to protect passengers and pedestrians from potentially catastrophic accidents resulting from digital compromises
20 Feb 2017
Bryian Tan
Password Strength Indicator using jQuery and XML + NuGet Package
30 Jan 2017
Unknown Author
Third of several articles covering the secrets of obtaining stored (and encrypted) credentials stored by browsers
30 Jan 2017
Unknown Author
Chrome stores all passwords and other credentials in an encrypted database but guess what: they can be retrieved by anyone with the proper knowledge. This article will show you how.
19 Jan 2017
Unknown Author
In this first episode we'll tackle the first thing, security. We are at the start of a journey. We'll learn about many Predix services and components. We'll find the good, the bad and the ugly, and we'll complain the whole way. After security we'll hit Asset and Analytics.
18 Jan 2017
Unknown Author
Here are five top tips from our expert team to help you maximize the benefits of your cloud infrastructure.
26 Sep 2016
Unknown Author
The objective of threat modeling is to understand how an attacker might be able to compromise a system and then make sure appropriate mitigations are in place. Threat modeling forces the design team to consider mitigations as the system is designed rather than after a system is deployed.
16 Aug 2016
Unknown Author
Application Managed Authorisation using Dependency Injection and Interception
4 Aug 2016
Saineshwar Bageri
In this article we will run through 10 points which will help us to make our MVC code secure.
10 Jul 2016
Ramneekkalra
This article will surely give an idea how to develop a self-controlled, self-connected smart home/building.
3 Jun 2016
Unknown Author
A novel approach to generate a secure way to login that doesn't require the user to ever memorize a password again. This method can be used with any web site, program, etc. and creates a more secure password than other methods.
22 May 2016
RajeshKumar D
Configuring PGP Encryption and Decryption part of MULE ESB
15 Apr 2016
Unknown Author
Using XSRF with Web API and Angular
21 Mar 2016
Dharmesh_Kemkar
Basics on Cryptography, SSL and Digital Signature
18 Mar 2016
Unknown Author
In the enthusiasm to embrace IoT technology, however, ongoing privacy issues and security threats are sometimes going unnoticed. These issues are gaining more attention, highlighting concerns that should be factored into planning, development projects, and broader IoT implementations.
26 Feb 2016
Max R McCarty
How are you storing that sensitive application data and should you be?
16 Feb 2016
Max R McCarty
OWASP's #6 most vulnerable security risk has to do with keeping secrets secret.
14 Feb 2016
adriancs, Unknown Author
Securing Password by Hashing with Salt
1 Feb 2016
Unknown Author
High Performance and Security Software-Based Encryption by Intel® Advanced Encryption Standard New Instructions and Intel® Secure Key
14 Jan 2016
Unknown Author
Intel® Hardware-based Security Technologies Bring Differentiation to Biometrics Recognition Applications
14 Jan 2016
Unknown Author
I will describe a new way to implement security for sensitive data based on eCryptfs (eCryptfs.org).
1 Dec 2015
Unknown Author
Working with customers and partners, here is an overview of the need for DevSec and the five ‘best practice’ questions to ask when looking how to have a better ‘DevSec’ strategy
13 Nov 2015
Paulo Zemek
Lately I am dealing a lot with security issues and, as I am thinking about security all the time, I decided to write this post. Yet, don't expect me to talk about the newest cases.So, first, what is considered a security issue?I don't have a perfect answer but maybe we can say that if anything in an
30 Oct 2015
Unknown Author
In this article, I will describe four best practices for Android device management.
6 Sep 2015
Unknown Author
Validation & security in MVC application
23 Jun 2015
Kel_
Securing Spike Engine HTTP & Websockets with TLS/SSL layer.
16 Jun 2015
Unknown Author
I recently spent some time with Rogue Wave OpenLogic product. OpenLogic is an “open source” component review tool.
8 Jun 2015
Unknown Author
An introduction to custom roles based access control in an ASP.NET MVC application using the Entity Framework.
15 Apr 2015
Unknown Author
How to build a simple hardware password safe and login system with off the shelf components.
23 Feb 2015
Unknown Author
A custom security architecture for role based access to components in a page
9 Feb 2015
Unknown Author
Security Engineer manifesto
26 Jan 2015
Unknown Author
Handy classes to use the .NET Encryption/Decryption
17 Nov 2014
Unknown Author
Recent industry reports indicate Android* is the OS in more than 59 percent of laptops, tablets and smartphones worldwide.
28 Oct 2014
Unknown Author
The objective of writing this paper is to manifest, how to crack an executable without peeping its source code by exercising OllyDbg tool.
29 Sep 2014
Unknown Author
Acunetix WVS audits your website security by running a host of tests. It then provides a concise report of issues it found. Not only does it do this, but it also suggests changes you need to make to fix the issues found.
26 Sep 2014
Abani Kumar Meher
This article explains few scenarios where XSS attack can be done, how we make mistake while creating web application which leads to XSS vulnerability and what should be done to prevent XSS attacks.
14 Sep 2014
Abani Kumar Meher
This article describes how we write code while developing web application which results in SQL injection vulnerability and how we should write code to prevent it.
16 Jul 2014
Himanshu Thawait
No config file needed – all setting in code only, No IIS – Self hosted, consume by channel factory
16 Jul 2014
Rahul Rajat Singh
In this article we will look into ASP.NET Identity System which comes as the default authentication and authorization mechanism with ASP.NET MVC 5 internet application template. We will try to understand the ASP.NET Identity system and compare it with the ASP.NET simple membership providor and the c
11 Jul 2014
Unknown Author
I’ve been reviewing Novalys Visual Guard for the last 2 weeks, and found some really interesting nuggets in this package that would make my network administrators stand up and take notice.
27 Jan 2014
Unknown Author
Automate your penetration testing using the pentest tool ZAP and the
19 Nov 2013
Unknown Author
Installing, extending Identity Server and implementing session token caching
11 Oct 2013
ASP.NET Community
step1. drag create use wizard and drop on design window on your web page(default1.aspx).step2. go to website tab and click on asp.net
11 Oct 2013
ASP.NET Community
AJAX adds one more wrinkle to web security. I find that videos and demonstrations help me understand subtle topics like this.VideosSecurity in
11 Oct 2013
ASP.NET Community
There's a lot of great information on SQL Server Security covering both SQL Server 2000 and 2005.Blogs/DevCentersSQL Server 2005 Security on
11 Oct 2013
ASP.NET Community
It's absolutely necessary if you're serious about security.Whitepapers/Books/BlogsThreat Modeling for ASP.NET (PDF) - an excellent white
11 Oct 2013
ASP.NET Community
There's a great deal of good prescriptive security guidance out there in the form of whitepapers and books.Whitepaperspatterns & practices
11 Oct 2013
ASP.NET Community
Here are a few good tutorial articles that provide a good conceptual overview of how the new membership and role management system works. Check out
11 Oct 2013
ASP.NET Community
Code Access Security is one of the least-understood but most valuable aspects of the .NET Framework.WebcastsMSDN Webcast: Using Code Access
20 Jun 2013
Levente Kupás
If you have big reports which run slowly, you may use this T-SQL based engine to speed-up them.
19 Jun 2013
Rahul Rajat Singh
In this article we will discuss about securing the user passwords by using hashing and salting on the user passwords.
7 May 2013
Dmitry Tretyakov
Step by Step tutorial describes how to create custom Security Token Service.
6 Apr 2013
Rahul Rajat Singh
In this article we will try to see what is Cross Site Scripting(XSS).
19 Mar 2013
Unknown Author
How to create custom authorization policy and return HTTPContext Identity for authorization.
28 Feb 2013
Paul Stovell
Secure alternative to WCF. JSON-RPC meets SSL meets .NET and Mono.
15 Feb 2013
Unknown Author
How can an application elevate itself to gain "Admin" rights during runtime
9 Jan 2013
Rahul Rajat Singh
This article talk about what SQL injection is, how can that effect the security of our websites and what steps should be taken to create an ASP.NET application SQL injection proof.
22 Nov 2012
Unknown Author
A Simple But Surprisingly Effective Random Number Generator
26 Sep 2012
Vitaly Zhukov
This article describes how to create and use configurable plug-ins in your application.
20 Sep 2012
Unknown Author
Whether you’re developing for unmanaged small business, or enterprise-level IT departments, 3rd Generation Intel® Core™ processor-based PC and mobile platforms are designed to help you meet the needs of your customers.
16 Aug 2012
Unknown Author
Reading between the lines of the .NET 4.0 Level 2 Security documentation
20 Jul 2012
Unknown Author
This article will explain how to securely store users passwords in a database.
18 Jul 2012
Unknown Author
How to apply security and redirection to a view when a user cannot access a controller or a controller action in MVC
19 Jun 2012
Dominik Reichl
CSHA1 - A C++ class implementation of the SHA-1 hash algorithm
11 Jun 2012
taha bahraminezhad Jooneghani
Custom permission in object level with out sign in and out to affect to users
15 Mar 2012
Unknown Author
Implementing a Simple, Secure WCF Service with MSMQ Communication
11 Oct 2011
Unknown Author
Set up encrypted secure communication between C# and PHP using the AES and RSA algorithms.
13 Jul 2011
Unknown Author
Security attacks risk are minimised by careful planning of application design. If the application is distributed in nature, the challenges becomes manyfold. This article will try to give one way of doing so.
6 Jun 2011
Unknown Author
This article explains SQL injection attacks, mitigation strategies, and factors to consider while testing.
25 Apr 2011
Unknown Author
Perform SSL Verification while using Web Services
21 Apr 2011
Unknown Author
Verifying the Server Certificate on the client side using a CA file
1 Mar 2011
Bryian Tan
Server error response vulnerability - HTTP 500
9 Oct 2010
Unknown Author
Tutorial on using ZedGraph on a Medium trust web host, beginning to deployment.
25 Jul 2010
Unknown Author
This article describes custom username password authentication without the need of certificate installation on the client side.
5 Jul 2010
Unknown Author
Implementing a simplified version of the DES block cipher algorithm – which was the standard encryption algorithm before the AES, using C# to encrypt and decrypt binary files.
1 Jun 2010
Unknown Author
Describes how to use a custom principal implementation with the AspNetDb security database in a WinForms application.