Browse by Tags

All Tags » Test Phase » Development Phase   (RSS)
DebugView - Free Simple Tool To Quickly Identify Performance Problems
     DebugView is well known free tool from Systinternals (Microsoft) . Vast majority of developers is aware of its existence. Nevertheless, I've decided to write this post following my practice of journaling my technical accomplishments Read More...
Posted 11 November 08 05:12 by alikl | 4 Comments   
Filed under , ,
Best ASP.NET Performance Winner For Data Binding - Hands Up To Response.Write()
     To achieve best performance you need to make decisions based on trade-off between coolness, coding productivity, and personal engineering values. I never thought I would be recommending my customer considering using old fashion Read More...
Posted 31 July 08 03:29 by alikl | 21 Comments   
Filed under , , , ,
ASP.NET Performance Sin - Serving Images Dynamically (Or Another Reason To Love Fiddler)
Serving images dynamically may cause performance hit. Dynamically served images require more HTTP requests which violates Steve Souders' performance rule #1 - Make Fewer HTTP Requests . The latency is also caused by parallelism (or parallel downloading) Read More...
Posted 02 May 08 02:12 by alikl | 7 Comments   
Filed under , , , , ,
Free Performance Tool - Analyze IIS Logs Like A Pro With Funnel Web Analyzer
These free performance tools will save you time and money identifying performance bottlenecks. Your customers will thank you for building fast and responsive applications. Funnel Web Analyzer 5.0 for Windows Download the tool here. Analyzer gives insight Read More...
Posted 21 April 08 11:16 by alikl | 10 Comments   
Filed under , , ,
Performance Sin - Using Exceptions To Control Flow
Want to spot coding anti-patterns from performance perspective without actually looking in the code? One of the common performance coding anti-patterns I’ve noticed lately is using Exception Handling to control program flow. The anti-patterns Most Read More...
Posted 02 February 08 01:19 by alikl | 4 Comments   
Filed under , , , , ,
Performance Code Review Tool – Practices Checker
Care about performance? Do you write your code with performance in mind? Want little help to spot performance bottlenecks automatically? Practices Checker to the rescue. The goal of the tool is “Help you perform a manual code inspection by analyzing Read More...
Posted 21 January 08 09:37 by alikl | 8 Comments   
Filed under , , ,
XSSDetect Public Beta now Available!
XSSDetect public beta is now available for download on MSDN. Overview XSSDetect is a static code analysis tool that helps identify Cross-Site Scripting security flaws found within Web applications. It is able to scan compiled managed assemblies (C#, Visual Read More...
Posted 24 October 07 09:21 by alikl | 1 Comments   
Filed under , , , ,
Who Access My File?
In my post File Access Auditing - I Am Not Afraid Of GPO I've digested technet documentation on how to set Active Directory Group Policy Object (AD GP) to enable file access auditing as security measure to prevent repudiation. It is heavy weight techniques Read More...
Posted 03 April 07 07:02 by alikl | 7 Comments   
Filed under , , , , ,
Security Code Inspection - Eternal Search For SQL Injection
Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach is described here http://msdn2.microsoft.com/en-us/library/ms998399.aspx . It is basically split into two major parts - preliminary scan and the Read More...
Posted 31 March 07 09:04 by alikl | 6 Comments   
Filed under , , , ,
Security .Net Code Inspection Using Outlook 2007
In my previous post, Code Inspection - First Look For What To Look For , I've described how to look for sensitive data and hints in the compiled assemblies. The other challenge I was looking to solve is boosting my productivity. So with little magic of Read More...
Posted 26 March 07 03:04 by alikl | 8 Comments   
Filed under , , , ,
XSS? - Do not Make Me Laugh, We Use WinForms
Reposted from XSS? - Do not Make Me Laugh, We Use WinForms I find myself sometimes (actually too many times...) in situation explaining people of impact of Cross Site Scripting (attack) attacks as a result of importer encoding of user input (vulnerability) Read More...
Posted 25 March 07 10:16 by alikl | 2 Comments   
Filed under , , , ,
Code Inspection - First Look For What To Look For
Reposted from Security Code Inspection - First Look For What To Look For for further reuse on this blog. I found it extremely productive to first look for strings in the code. But what strings to look for? And how to look for the strings? Looking into Read More...
Posted 20 March 07 10:13 by alikl | 8 Comments   
Filed under , , , , , ,
Good Chance For Canonicalization Attack When Using Path.Combine()
In my previous post, .Net Assembly Spoof Attack , I've described potential DLL hijacking/spoof attack when using reflection for dynamically loaded assemblies. Today I was reviewing some project where I stumbled on exactly such case. One thing that caught Read More...
Posted 15 March 07 11:31 by alikl | 0 Comments   
Filed under , , , ,
.Net Assembly Spoof Attack
To be honest I am not sure about the name of such attack, but in the nutshell it is attack where the original good code is replaced by bad one with the same interface but very bad implementation - may be Trojan DLL? Anyway... My Australia based teammate Read More...
Posted 12 March 07 08:51 by alikl | 8 Comments   
Filed under , , , , , ,

Search

This Blog

. My Personal Blog .

.Net Performance How To's

.Net Security How To's

Design Patterns

Impactful

Lifecycle Phases

Popular

Tools

Syndication

Page view tracker