Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Security vulnerabilies checklist

Tags:

c#

.net

security

sql-server

I am working on a consumer facing web application built on .Net/C# MSSQL as the databse

We have been following general good coding practices to prevent bugs and SQL/JS query injections but non of us are experts on security.

What would be a good checklist to find out how really secure is the application we are building.

like image 694
kaivalya Avatar asked Apr 01 '09 01:04

kaivalya

1 Answers

I'm not sure what was meant by a checklist, since it could related to development (to help developers write less bugs), code review (to catch bugs in review) or testing (to ensure that all facets of the vulnerability are tested for).

OWASP does have guides to support all the three needs -

  • OWASP Development Guide
  • OWASP Code Review Guide
  • OWASP Testing Guide

And then to top it off, you could always refer to the OWASP Top 10 list, to establish priorities on the vulnerabilities that you would like to concentrate most of your efforts on.

As Mark mentioned, the OWASP .NET project will be useful.

like image 56
Vineet Reynolds Avatar answered Nov 03 '22 06:11

Vineet Reynolds
Sign in to Comment

Related questions

Visual Studio web user control events only show up in design mode?
Should you lock resources when reading values?
How do I invoke a method through reflection with a lambda expression as a parameter?
What possibilities are there for post mortem analysis in .NET (e.g. after a crash of a program)?
C# & PHP: Simple example of PHP Web Service used by C#
Viewing Time using the Infragistics UltraDateTimeEditor for WinForms
Where can I find an ICQ library for C#?
Html.DropDownList in ASP.NET MVC RC (refresh) not pre-selecting item
What's the pattern to use for iterating over associated sets of values?
Best way to organize dependant projects?
How CLR handles extern method calls in C#
How do you Mock IUnityContainer?
How to Unit Test an Implementation of IDictionary
App.config - encrypted section error:
How to deep clone interconnected objects in C#?
How to consume multiple WCF services from one client
How do I get a list of all the printable characters in C#?
Unit testing DelegatingHandler
Design pattern for class with upwards of 100 properties
How to use ASP.net Core 1 "SignInManager" without EntityFramework

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!