Code Junkie

This Tuesday I was spoke at the OWASP MN mini conference at the University of Minnesota's St. Paul Student Center. Had some very impressive speakers, Brian Chess, Richard Stallman and Jeff Williams. I spoke about our CISF framework and tools. http://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference Read More...

We have been working on this project for some time now. It is a http module to protect web applications from certain attacks. http://blogs.msdn.com/cisg/archive/2008/10/24/a-sneak-peak-at-the-security-runtime-engine.aspx Thanks RV Read More...

Varun in our team has posted part I of series about SecureString in .NET. Awesome blog entry talks about internal details on how secure strings work in .NET with some samples. Check it out at http://blogs.msdn.com/cisg/archive/2008/10/08/secure-strings-in-net-part-i.aspx Read More...

I have been using XElement class a lot lately, I was doing some performance tests on this to figure out the difference between this and XmlDocument class and here is what I found. First of all XElement class is part of .NET Framework 3.5, it was introduced Read More...

It's been a while since I posted my last blog entry. This time it is on few ASP.NET data binding scenarios and how you should use AntiXss encoding. Very important for ASP.NET developers. Check it out on our team blog at http://blogs.msdn.com/cisg/archive/2008/10/01/asp-net-data-binding-and-antixss-encoding.aspx Read More...