• Security Tools

    Want to Develop Software Security Tools?

    • 0 Comments
    https://careers.microsoft.com/JobDetails.aspx?ss=&pg=0&so=&rw=1&jid=6724&jlang=EN Job Category: IT Location: United States, WA, Redmond Job ID: 701734 6724 Product: (Not Product Specific) Division: IT The information security tools...
  • Security Tools

    Want to Shape Great Security Tools ?

    • 0 Comments
    Senior Program Manager (702519 -External) https://careers.microsoft.com/JobDetails.aspx?ss=&pg=0&so=&rw=1&jid=7205&jlang=EN Job Category: IT Location: United States, WA, Redmond Job ID: 702519 7205 Division: IT The information security...
  • Security Tools

    CISF Security Portal Architecture

    • 0 Comments
    Syam Babu Pinnaka here. I am a developer on the Information Security Tools team. Later today well release our Community Technology Preview or CTP of the Connected Information Security Framework or CISF. This is an early preview so developers folks can...
  • Security Tools

    Automating Windows Firewall settings with C# (part 2)

    • 0 Comments
    Hi Vamsy here. I am an Operations Engineer in the Information Security  Team. In my previous post, I have described automating Windows Firewall Settings with C#. As promised in the previous post , I will describe the tool I call Windows Firewall...
  • Security Tools

    How To: Identify Memory Leaks In An Unmanaged Application

    • 0 Comments
    Syed Aslam Basha here. I am a tester on the Information Security Tools team. To carryout memory leaks testing for one of our applications, I have researched a lot and I thought I would share my experiences and approach I used to benefit everybody. Application...
  • Security Tools

    How To: Adding Lots of Users To AD To Setup Testing Environments

    • 0 Comments
    Syed Aslam Basha here. I am a tester on the Information Security Tools team. To carryout performance testing for one of our projects I need to have thousands of users for self hosted domain controller and active directory(AD). It is next to impossible...
  • Security Tools

    Some Useful SQL Queries for Software Testers

    • 0 Comments
    Syed Aslam Basha here. I am a tester on the Information Security Tools team. As a tester, apart from UI testing I test DB for integrity. Our boss is encouraging us to share tips that save us time on the team so here are a few of mine. In this blog post...
  • Security Tools

    How to: Restart a Remote Server Using Command Prompt

    • 0 Comments
    Syed Aslam Basha here. I am a tester on the Information Security Tools team. In our team am responsible for setting up and maintaining test servers. At times the servers are remotely located and doesn’t respond and you need to restart them. You can contact...
  • Security Tools

    How To Publish an ASP.NET Website from a Command Line

    • 0 Comments
    Syed Aslam Basha here. I am a tester on the Information Security Tools team. To test the tools which we develop on the team, at times I need to build a website and publish it. I use a simple way of publishing websites from the command line that saves...
  • Security Tools

    HTML Sanitization in Anti-XSS Library

    • 0 Comments
    RV here... For a while now, I have been talking about various types of encodings and how they protect web applications from cross site scripting attacks. In most cases input is simply passed through AntiXss.HtmlEncode or similar methods to transform it...
  • Security Tools

    Sharing Master Pages in Multiple Projects

    • 0 Comments
    Hi Anil Chintala here. I am working on a requirement for a Portal, which is to share the look and feel of the portal by multiple web applications seamlessly and without any rework. I started doing some prototyping work and writing up some scenarios we...
  • Security Tools

    Application Health Monitoring (in ASP.NET 2.0 and above)

    • 0 Comments
    Vineet Batta here, A little known but excellent features of ASP.NET is it’s ability to give support teams the ability to monitor the health of ASP.NET applications. In this article I will dwell on out of box features. No custom classes or code to be written...
  • Security Tools

    Hash Functions in .NET – Right Tool for the Right Job

    • 0 Comments
    Hi, Ch etan Bhat here. I’m a developer with the Security Tools Team. In this post I will talk about common mistakes developers make when when using hash functions. Any hash function is required to meet the following two requirements. It must be easy to...
  • Security Tools

    How to Manage a Product Backlog with Visual Studio Team System 2008

    • 0 Comments
    Hi this is Marius Grigoriu, Program Manager of Risk Tracker and our BI system--which will both be introduced at a later time. Today I am going to share how I track and manage projects and requirements. Both my teams are Agile teams and use product backlogs...
  • Security Tools

    Encoding Cascading Style Sheet Strings

    • 0 Comments
    RV here... Cascading Style Sheets provide developers ways to change the UI theme of a website and this provides many opportunities for malicious users to change the UI if the application uses dynamic data inside style tags or in HTML style attributes...
  • Security Tools

    Automating Windows Firewall Settings with C#

    • 1 Comments
    Hi Vamsy here. I am a Developer in Information Security Tools Team. I have done some work on automating Windows Firewall settings using C# and wanted to share what I learnt. In this post, I am going to demonstrate how to programmatically access the following...
  • Security Tools

    LDAP Injection and Mitigation

    • 2 Comments
    RV here... The Lightweight Directory Access Protocol (LDAP) API provides a mechanism for connecting to, searching, and modifying internet directories. A LDAP (Lightweight Directory Access Protocol) injection attack exploits vulnerabilities in input validation...
  • Security Tools

    Automate Security Management for VSTF Source Control

    • 0 Comments
    Kathy Shieh here. I am the dev lead for the Information Security Tools team in the US. Visual Studio Team Foundation server (VSTF)  provides a pretty good GUI interface for security management. Within the VSTF UI you can create custom roles, manage...
  • Security Tools

    SSL Redirect – Http Module

    • 1 Comments
    Vineet  Batta here again… Some time back one of our applications was released into production and since the application data was HBI  we were required to protect data both in a rest and a transit. For transit we enabled SSL, that is the link...
  • Security Tools

    Application Portfolio Management (APM)

    • 0 Comments
    Vineet Batta here….This is a short introduction to the Application Portfolio Management (APM) component of the Connected Information Security Framework or CISF that we hope to reach the CTP milestone in next 2-3 weeks.  The APM component is designed...
  • Security Tools

    Object.GetHashCode()

    • 1 Comments
    Gaurav Sharma here, I’m a developer with the Information Security Tools team. Today I want to share something about FCL’s GetHashCode method. System.Object provides a virtual GetHashCode method so that an Int32 hash code can be obtained for any and all...
  • Security Tools

    How to Get All User Members From Nested Security Groups in Active Directory Using .NET and C#

    • 1 Comments
    Hello, Randy Evans here. I am a principal developer on the Information Security Tools team. In a recent project, we found it necessary to get collections of users from security groups defined in Active Directory (AD). It is common practice for security...
  • Security Tools

    TAM 3.0 and the Intelligent TFS Sync Feature

    • 0 Comments
    Syed Aslam Basha here. I am the tester on the Information Security Tools team and responsible for testing  Microsoft Threat Analysis and Modeling v3.0. In the previous blog post we have highlighted feature list of TAM V3.0 (For more information ...
  • Security Tools

    Self-Service Identity and Access Management Solution (Easy ID)

    • 0 Comments
    Raju Bhan here, I am a PM on the Information Security Tools team   If you haven’t had a chance to go through my last blog about ensuring identity consistency, please check it out here since Easy ID is an extension of that. Easy ID was created to...
  • Security Tools

    Security Guidance and Threat Modeling

    • 0 Comments
    RV here... Security Development Lifecycle and other security development processes help developers build secure application and one of the key outputs of these processes is security guidance. You might ask, what is security guidance? From an architect...
Page 3 of 5 (109 items) 12345