Code Junkie

MSDN Home: (Visual Studio RC Banner) http://msdn.microsoft.com/subscriptions/ MSDN Subscriber Downloads: (Windows Client and Server, Visual Studio) http://msdn.microsoft.com/subscriptions/downloads TechNet Subscriber Downloads: (Windows Client and...

MSDN Subscriptions just released windows 8 files on msdn subscriptions, you can get it with your subscription. Windows 8 - https://msdn.microsoft.com/en-us/subscriptions/securedownloads/default.aspx?pv=36:481 Windows Server 2012 - https://msdn.microsoft...

Creating a UI design with right button widths and field lengths are quite challenging when you consider using image spriting techniques. When I was designing a page I would go to www.microsofttranslator.com and use it to translate words to see if everything...

Its been almost a year since my last blog post, I have been extremely busy with stuff around moving jobs to getting used to the new job. BTW, I moved from Information Security Tools to MSDN Subscriptions. MSDN as a whole is an awesome place to work, from...

Barrage of changes were made for this release including CSS and LDAP encodings. You can get more details about the release at http://blogs.msdn.com/b/securitytools/archive/2010/09/30/antixss_2d00_4_2d00_0_2d00_release_2d00_notes.aspx . You can download...

Web Application Configuration Analyzer v1.0 is the latest tool released by our team that scans a machine for deployment best practices. Here is how you can use this tool to view a scan report which provides resolution details for failed rules. 1. From...

Web Application Configuration Analyzer v1.0 is the latest tool released by our team that scans a machine for deployment best practices. Here is how you can use this tool to scan a machine for these best practices. 1. Launch the application by going to...

I am excited to announce the release of Web Application Configuration Analyzer v1.0 tool. The following is the quick overview of the tool and its features. Web Application Configuration Analyzer (WACA) is a tool that scans a server against a set of best...

With recent release of Windows Embedded Standard 7 you can get all the goodness of Windows 7 with the power of componentization, which means you now split windows and remove the unneeded components to increase your performance. Here is the problem I had...

My previous blog post talked about how to develop a custom workflow activity to use it in the build workflow process to generate email with work item and file information. This second installment talks about how to integrate the custom workflow activity...

Team Foundation Server 2010 build service can now be customized using .NET v4.0 workflow activities. I was recently working on a requirement to generate an email after the successful build which provides basic information about the contents of the build...

This information is very useful when deploying or installing a new build generated by TFS Build Server. It can give information for testers to target specific areas of the application. TFS Source Control service can provider the necessary information...

Microsoft Research has been doing awesome work with regards to statically analyzing JavaScript application. As more and more applications are using AJAX and other client side frameworks which make use of JavaScript to provide rich client experience there...

Is your application accepting files and writing them to the disk? How do you determine if the file extension is an executable file on the server? Fortunately with the use of SaferiIsExecutableFileType function you can determine if a given file is an executable...

Here are some of my favorite cool phidgets based projects. http://blogs.msdn.com/b/coding4fun/archive/2007/12/23/1230660.aspx - Animated Musical Holiday Light Show - Version 2.0 http://blogs.msdn.com/b/coding4fun/archive/2007/01/22/1507304.aspx - Computer...

After the initial development of Mopbot using phidgets I was having lot of reliability issues. Specially got PhidgetException about “Phidget not physically attached" or sometimes the motors got stuck because the program could not reset them. I also...

Input validation has always been trickier to implement in data driven applications. Specially web applications where validation can be implemented in multiple places i.e. client and server. From a security perspective you would want to implement the validation...

Lately I have been trying to create a robot with a specific purpose to mop our hardwood flooring. After some initial research I ended up selecting Phidgets controllers which give me independent access to specific controllers motors, switches, sensors...

We recently did a screen cast on Channel 9 about upcoming release of CAT.NET. This video includes details of the analysis engine and a demo CAT.NET 2.0. Video can be found at http://channel9.msdn.com/posts/Jossie/Using-the-Code-Analysis-Tool-CATNET-20...

Threat Analysis and Modeling Tool (TAM) tool is being retired inside Microsoft. It has been replaced with SDL Threat Modeling tool . It was my pleasure working with many folks internally and externally over this tool. In the interest of external customers...

Want to know more when you can get your hands on the next version of Anti-XSS library, check out this blog about our upcoming CTP release of Web Protection Library. http://blogs.msdn.com/securitytools/archive/2009/10/17/web-protection-library-ctp-release...

Here is an excellent MSDN article on how to detect and avoid memory leaks in .NET applications. http://msdn.microsoft.com/en-us/library/ee658248.aspx A must read for Sr. Developers and Testers. Thanks Anil

You can now download the new version of Anti-XSS library v3.1 from Microsoft.com Download Center. For more details check this blog post. http://blogs.msdn.com/securitytools/archive/2009/09/17/anti-xss-library-v3-1-released.aspx Thanks Anil

Now you can filter (sanitize) HTML using Anti-XSS library v3.1 features. More information can be found at http://blogs.msdn.com/securitytools/archive/2009/09/01/html-sanitization-in-anti-xss-library.aspx . Thanks RV

I recently blogged about encoding cascading style sheet strings. A new feature is being added to the next version of Web Protection Library (anti-xss library). http://blogs.msdn.com/securitytools/archive/2009/08/21/encoding-cascading-style-sheet-strings...