Security .Net Code Inspection Using Outlook 2007

In my previous post, Code Inspection - First Look For What To Look For, I've described how to look for sensitive data and hints in the compiled assemblies. The other challenge I was looking to solve is boosting my productivity. So with little magic of scripting (more magic here Scriptomania - Scripting Tools and Utilities) and generous help from my friend DIR (more here Security Deployment Inspection Using Office.) I've accomplished task of scanning all directories, and dumping all the strings into text files, like this:

All I had to do is go over each and every text file and look for funny things (depicted in Code Inspection - First Look For What To Look For). Pretty annoying: double click, scroll down, move to "Seen" folder - no marking and categorization or follow up capabilities - WAIT A MINUTE!!! Does not it sound like Outlook? So I dragged all the text files into my new shiny Outlook 2007 getting all the goodies it provides:

1. Move through items using up and down arrow using left hand.

2. Scroll the text in preview pane using mouse wheel by right hand.

3. Tag and categorize.

4. Everything else Outlook provides.

5. AND OF COURSE USING INSTANT SEARCH IS A REAL PLEASURE:

Enjoy

Published 26 March 07 03:04 by alikl

Filed under: Test Phase, Security, Tools, Code Inspection, Development Phase

Comments

# alik levin's said on March 31, 2007 4:04 PM:: Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach
# RSS It All said on March 31, 2007 5:29 PM:: Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach
# alik levin's said on April 18, 2007 1:47 PM:: Imagine if security was cool like Silverlight .... But security is not that cool, so the biggest challenge
# alik levin's said on May 13, 2007 4:04 PM:: I used couple of RSS readers but lately I switched to my Outlook 2007 to meet WEB 2.0 era. Here is what
# alik levin's said on December 1, 2007 9:16 AM:: DIR /S /B /A:-D I use simple DIR command to generate file lists. It serves me in many scenarios. For
# Noticias externas said on December 1, 2007 9:43 AM:: DIR /S /B /A:-D I use simple DIR command to generate file lists. It serves me in many scenarios. For
# alik levin's said on January 3, 2008 4:43 PM:: patterns&practices recently released new version of Guidance Explorer [GE]. One of the most important
# alik levin's said on January 24, 2008 8:38 AM:: How to streamline the process of capturing security flaws during security code review? How to save time

New Comments to this post are disabled

Alik Levin's

Security .Net Code Inspection Using Outlook 2007

Comments

Search

This Blog

Twitter Updates

Books I recommend

Tags

Archives

. My Personal Blog .

.Net Performance How To's

.Net Security How To's

Design Patterns

Impactful

Lifecycle Phases

Popular

Tools

Syndication