.NET Secure Development

A collection of 5 posts

Use ExceptionFilter to hide errors in your WebApi

One of the more common security mistakes is exposing too much information to our users. In the beginning of ASP.NET we had the famous "yellow screen of death." This screen

Full Story

Use ActionFilters to lock down ASP.NET WebAPI

Action filters are one of those little used but powerful features of the ASP.NET MVC and ASP.NET WebAPI stack. Most people have heard of them or are at the very least

Full Story

Protect Your Cookies from XSS

One of the more favorite attacks with Cross Site-Scripting (XSS) is to hijack another user's session. This attack is known as session hijacking (shocking!). When it boils down to it, session hijacking is

Full Story

Prevent XSS Exploits - Content Security Policy Header

Ahh XSS exploits. A nice buzzword in security conferences and classes. It sounds so cool and mysterious with the X in the front. But what is it really? How can it possibly harm

Full Story

Secure .NET Development Introduction

There is a fine line between a secure .NET Web Application and an insecure .NET Web Application. A handful of tweaks here and there can make a world of difference Back in March,

Full Story

.NET Secure Development

Use ExceptionFilter to hide errors in your WebApi

Use ActionFilters to lock down ASP.NET WebAPI

Protect Your Cookies from XSS

Prevent XSS Exploits - Content Security Policy Header

Secure .NET Development Introduction

Recent Posts

Build a VM Test Lab using Unraid - Working From Home Part I

Infrastructure: Setup Octopus Deploy to use Redgate DLM Automation

Self Signed Certificates and Sub-Domains with Local IIS - Automated Developer Machine Setup Part III