From: Lachniet, Mark (mlachniet@sequoianet.com)
Date: Wed Mar 24 2004 - 14:47:44 EST
Is anyone aware of a whitepaper or analysis of the security features
(and weaknesses?) of Microsoft's .NET platform for web applications? A
number of interesting features, such as input validation and session
tracking, are built into .NET, and I'd be interested to hear if anyone
has kicked it around much.
Please note, I am *not* interested in references to Microsoft
documentation, developer web sites, or conventional information sources,
but rather information from the viewpoint of a pen-tester doing web
application security analysis work.
Thank you in advance,
Mark Lachniet
---------------------------------------------------------------------------
You're a pen tester, but is google.com still your R&D team?
Now you can get trustworthy commercial-grade exploits and the latest
techniques from a world-class research group.
www.coresecurity.com/promos/sf_ept1
----------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:51 EDT