OWASP #6 Preventing Sensitive Data Exposure – Part 3 .NET ASP.NET CSP Encryption Hacking HSTS HTTPS OWASP Security SSL Web Development By Max McCarty / February 17, 2016 OWASP #6 Preventing Sensitive Data Exposure – Part 3 This is part 3 of Sensitive Data Exposure Continue reading > Share
Hacking an Insecure Login Form .NET ASP.NET Authentication Fiddler Hacked Hacking HTTPS Passwords Security Security Misconfiguration SSL By Max McCarty / February 10, 2016 Setting up SSL/TLS on sites has gotten easier and cheaper, but it has always been the Achilles heel for Continue reading > Share
OWASP #6 Preventing Sensitive Data Exposure in ASP.NET – Part 2 .NET ASP.NET Azure C# Encryption OWASP Security By Max McCarty / February 8, 2016 In part 1 we started the discussion about keeping secrets secret, which is the theme of the Open Web Continue reading > Share
OWASP #6 Preventing Sensitive Data Exposure in ASP.NET – Part 1 ASP.NET C# Encryption OWASP Security By Max McCarty / October 19, 2015 In 2007, Albert Gonzalez went on a hacking spree, siphoning off businesses’ credit card information. Continue reading > Share
When Should You Return 404 Instead of 403 HTTP Status Code? .NET ASP.NET Security Security Misconfiguration Web Development By Max McCarty / April 13, 2015 When talking about web application security, one common denominator that repeatedly comes up is the act Continue reading > Share
OWASP #5 Security Misconfiguration: Hardening your ASP.NET App .NET AngularJS ASP.NET C# OWASP Security Security Misconfiguration By Max McCarty / March 30, 2015 There are a number of moving parts in a nuclear reactor, all of which play a vital role in the reactor’s Continue reading > Share
Insecure Direct Object Reference: Is your ASP.NET App Data Secure? .NET ASP.NET Encryption OWASP Security Symmetric Encryption Web Development By Max McCarty / March 9, 2015 As an aerospace engineer at X94, your boss has asked you to retrieve the technical drawings on a particular Continue reading > Share
Ever Wonder What Happened to Your Azure Website Connection String? ASP.NET Azure OWASP Security Web Development By Max McCarty / February 24, 2015 The Curious Case of the Missing Azure Connection String You’re new to Azure and you’re working on Continue reading > Share
Preventing XSS in ASP.NET Made Easy .NET ASP.NET OWASP Security By Max McCarty / February 6, 2015 Our web applications can trust the motives of its users and the information they provide – Continue reading > Share
Control Data Access in Azure Storage Services with Shared Access Signatures ASP.NET Azure Cloud Security Video By Max McCarty / November 20, 2014 You’re utilizing Microsoft Azure Storage services to host your data only to realize you need to Continue reading > Share