Released How To: Perform a Security Code Review for Managed Code (.NET Framework 2.0)
We released an updated version of our Security Code Review today called How To: Perform a Security Code Review for Managed Code (.NET Framework 2.0).
This improves our original security code review for .NET Framework 1.1 in Threats and Countermeasures. The new version outlines the code review process which uses a question driven approach by technology.
Use the companion question lists to determine if your application is susceptible to the listed security issues. The companion Question Lists are:
