Clarity, Technology, and Solving Problems | PracticeThis.com
WP7 App with Key Windows Azure resources – Slides, Videos, How-To’s, and T-shooting – for quick consumption on the go.
In my previous post, Code Inspection - First Look For What To Look For, I've described how to look for sensitive data and hints in the compiled assemblies. The other challenge I was looking to solve is boosting my productivity. So with little magic of scripting (more magic here Scriptomania - Scripting Tools and Utilities) and generous help from my friend DIR (more here Security Deployment Inspection Using Office.) I've accomplished task of scanning all directories, and dumping all the strings into text files, like this:
All I had to do is go over each and every text file and look for funny things (depicted in Code Inspection - First Look For What To Look For). Pretty annoying: double click, scroll down, move to "Seen" folder - no marking and categorization or follow up capabilities - WAIT A MINUTE!!! Does not it sound like Outlook? So I dragged all the text files into my new shiny Outlook 2007 getting all the goodies it provides:
1. Move through items using up and down arrow using left hand.
2. Scroll the text in preview pane using mouse wheel by right hand.
3. Tag and categorize.
4. Everything else Outlook provides.
5. AND OF COURSE USING INSTANT SEARCH IS A REAL PLEASURE:
Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach
Imagine if security was cool like Silverlight .... But security is not that cool, so the biggest challenge
I used couple of RSS readers but lately I switched to my Outlook 2007 to meet WEB 2.0 era. Here is what
DIR /S /B /A:-D I use simple DIR command to generate file lists. It serves me in many scenarios. For
patterns&practices recently released new version of Guidance Explorer [GE]. One of the most important
How to streamline the process of capturing security flaws during security code review? How to save time