.NET Daily

Recommended Resources


Popular Content


Navigation
CategoryFeatured
Featured

Featured

Passive Security Tip: Deny Unused file extensions in an ASP.NET website

Posted on November 4th, 2012.

There are cases when for example due to poor form validation, an attacker can upload a .bat file instead of a picture on a form and after that can execute the malicious .bat file via URL. Remedy ASP.NET allows developers to specify in the web.config file certain file or services extensions that they won’t be used in the application....

Featured

Featured

Passive Security Tip: Error HTTP 403

Posted on November 1st, 2012.

Usually the error HTTP 403 is triggered when the directory browsing is disabled in IIS and the user tries to access a specific directory with forbidden access from the website structure. An attacker can use the HTTP 403 error to map your website directories in order for him to discover sensitive information for an attack. Remedy Always...

Featured

Featured

Passive Security Tip: HttpOnly Cookies

Posted on October 29th, 2012.

During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim’s session. Example User opens an email with a newsletter. The code of the image below quickly executes a malicious Javascript code on client’s browser. You can see an example below the image code: HTML Code: <img...

Featured

Featured

Prevent Attack: Cross-Site Request Forgery (CSRF)

Posted on October 22nd, 2012.

Cross-site request forgery, also known as a one-click attack or session riding is a type of malicious exploit of a website whereby unauthorized commands are transmitted from a user that the website trusts. Unlike cross-site scripting (XSS), which exploits the trust a user, has for a particular site, CSRF exploits the trust that a site...

Featured

Featured

Basic Security Tips for ASP.NET Websites

Posted on October 22nd, 2012.

Security is important. Everybody knows that. But sometimes, in order to you pay attention to it, you have to deal with some data loss or some server attacks. Be sure you take some security measurements for your project before a possible attack, not after. Below you find some basic security tips that you should implement in your ASP.NET...

Featured

Featured

How to increase productivity with Telerik

Posted on July 6th, 2012.

After many years of working with Telerik .NET solutions, I have finally learned how to increase productivity of my team. Check this out:

Featured

Featured

How to Add Expires Headers on an ASP.NET Website

Posted on June 7th, 2012.

If you use YSlow plugin as an assistant to help you improve your website performance, you probably saw that by default you get an F grade on “Add Expires headers” section. What exactly are Expires Headers? Below is an explanation from Yahoo Developer website: Browsers (and proxies) use a cache to reduce the number and size of HTTP...

Featured

Featured

Windows 8 Store Preview

Posted on December 18th, 2011.

Have you ever been jealous on an Xcode developer before? On how easily that guy managed to make simple and cute applications and on how he earned a lot of money helped by the App Store? Now we can do that too. Microsoft finally made available a preview of the new Windows Store that will be released along with Windows 8 beta somewhere in...

Featured

Featured

Coding Standards for Web Development

Posted on October 28th, 2011.

Writing neat C# code in an ASP.NET environment is not sufficient because you also write HTML, CSS and probably some Javascript too. So, you should also take a look at some coding standards for the languages mentioned before. Take a look at the following document and tell me your opinion about it. Suggestions are welcomed too. For the...

Featured

C#

Coding Standards for C#

Posted on June 27th, 2011.

It’s easy to write code but it’s hard to write readable and long-term maintainable code. Whether you work in an organization or you are a freelancer, it’s mandatory to respect some basic rules about C#. It helps you to save some time when you need to make some changes over the time and it will be understandable by all...