the latest stories tagged with 'XSS' from DotNetKicks.com http://www.dotnetkicks.com/ en-us Atweb Publishing Ltd. http://backend.userland.com/rss DotNetKicks.com - .NET links, community driven 30 AntiXSS 3.0 helps you to protect your current applications from cross-site scripting attacks, at the same time helping you to protect your legacy application with its Security Runtime Engine <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fwww.microsoft.com%2fdownloads%2fdetails.aspx%3ffamilyid%3d051ee83c-5ccf-48ed-8463-02f56a6bfc09%26displaylang%3den%26tm"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fwww.microsoft.com%2fdownloads%2fdetails.aspx%3ffamilyid%3d051ee83c-5ccf-48ed-8463-02f56a6bfc09%26displaylang%3den%26tm" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/security/Microsoft_Anti_Cross_Site_Scripting_Library_V3_0_Beta http://www.dotnetkicks.com/security/Microsoft_Anti_Cross_Site_Scripting_Library_V3_0_Beta Mon, 15 Dec 2008 07:57:26 GMT Rob Conery talks about the power of a bot net and why developers should be aware of XSS attacks and other nasties should an app be allowing users to post into the system. <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fcodebetter.com%2fblogs%2frob.conery%2farchive%2f2008%2f12%2f13%2fthe-perfect-storm-botnet.aspx"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fcodebetter.com%2fblogs%2frob.conery%2farchive%2f2008%2f12%2f13%2fthe-perfect-storm-botnet.aspx" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/security/The_Perfect_Storm_Botnet http://www.dotnetkicks.com/security/The_Perfect_Storm_Botnet Sun, 14 Dec 2008 14:16:02 GMT My website got hacked. I got several html code injections inside the database. Here is how i fixed the issue very quickly. <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fkorayem.net%2fpost%2f2008%2f08%2f21%2fMy-Websites-SQL-Database-was-hacked.aspx"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fkorayem.net%2fpost%2f2008%2f08%2f21%2fMy-Websites-SQL-Database-was-hacked.aspx" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/database/How_to_Search_And_Replace_values_in_SQL_across_All_Tables http://www.dotnetkicks.com/database/How_to_Search_And_Replace_values_in_SQL_across_All_Tables Thu, 21 Aug 2008 19:15:50 GMT Tired of having to remember to HTML-encode all your strings to prevent cross-site-scripting? Here's a way to change the ASPX page compilation process so that output is correctly encoded by default. <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fblog.codeville.net%2f2007%2f12%2f19%2faspnet-mvc-prevent-xss-with-automatic-html-encoding%2f"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fblog.codeville.net%2f2007%2f12%2f19%2faspnet-mvc-prevent-xss-with-automatic-html-encoding%2f" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/aspnet/ASP_NET_MVC_Prevent_XSS_with_automatic_HTML_encoding http://www.dotnetkicks.com/aspnet/ASP_NET_MVC_Prevent_XSS_with_automatic_HTML_encoding Thu, 20 Dec 2007 10:31:02 GMT Rick Strahl on JSONP <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fwww.west-wind.com%2fweblog%2fposts%2f107136.aspx"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fwww.west-wind.com%2fweblog%2fposts%2f107136.aspx" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/ajax/JSONP_for_cross_site_Callbacks http://www.dotnetkicks.com/ajax/JSONP_for_cross_site_Callbacks Wed, 10 Oct 2007 14:01:04 GMT XSS? What is XSS? Well, to cut it short XSS is the abbreviation of Cross Site Scripting but the C have been replaced with X because CSS already means Cascaded Style Sheets plus XSS is a much cooler name ;) so what is XSS again? <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fbarmagy.com%2fblogs%2finfinite_loop%2farchive%2f2007%2f07%2f12%2f465.aspx"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fbarmagy.com%2fblogs%2finfinite_loop%2farchive%2f2007%2f07%2f12%2f465.aspx" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/security/alert_XSS http://www.dotnetkicks.com/security/alert_XSS Tue, 14 Aug 2007 12:26:44 GMT In this presentation at the Jacksonville SQL Server Users Group, Bayer White playS the part of a developer protecting his application and Brian Knight attempts to hack his application using SQL Injection and cross-site scripting. Then, Bayer will show you how to protect yourself from the hacker and then Brian tries again. Back and forth the chess match goes until someone wins! <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fwww.jumpstarttv.com%2fMedia.aspx%3fvid%3d76"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fwww.jumpstarttv.com%2fMedia.aspx%3fvid%3d76" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/security/Video_Hacking_SQL_Server http://www.dotnetkicks.com/security/Video_Hacking_SQL_Server Mon, 05 Feb 2007 08:16:01 GMT Anti-Cross Site Scripting Library released. <br /><br /><br /><a href="http://www.dotnetkicks.com/kick/?url=http%3a%2f%2fblog.krisvandermast.com%2fAntiCrossSiteScriptingLibrary.aspx"><img src="http://www.dotnetkicks.com/Services/Images/KickItImageGenerator.ashx?url=http%3a%2f%2fblog.krisvandermast.com%2fAntiCrossSiteScriptingLibrary.aspx" border="0" alt="kick it on DotNetKicks.com" /></a> http://www.dotnetkicks.com/security/Anti_Cross_Site_Scripting_Library http://www.dotnetkicks.com/security/Anti_Cross_Site_Scripting_Library Mon, 15 Jan 2007 05:16:02 GMT