comments (not for humans)
Troy Hunt is doing a great series on the OWASP Top 10 for .NET developers. Definitely worth a read for any .NET developer:
  1. Injection
  2. Cross-Site Scripting (XSS)
  3. Broken Authentication and Session Management
  4. Insecure Direct Object References
  5. Cross-Site Request Forgery (CSRF)
  6. Security Misconfiguration
  7. Insecure Cryptographic Storage
  8. Failure to Restrict URL Access (not yet available)
  9. Insufficient Transport Layer Protection (not yet available)
  10. Unvalidated Redirects and Forwards (not yet available)
Comments closed for this post