Categories: Security (40 posts)

2025

• Understanding and Managing Mark of the Web in .NET

2024

• Generating SBOM for NuGet packages

2020

• How not to create paywall
• Security headers in ASP.NET Core
• Using Windows Antimalware Scan Interface in .NET
• How to protect against XML vulnerabilities in .NET
• Prevent Zip Slip in .NET
• Prevent Zip bombs in a .NET application
• Deserialization can be dangerous

2019

• Regex - Deny of Service (ReDoS)
• How to avoid storing secrets in the source code?
• Implementing Two-factor authentication in an ASP.NET Core application
• Automatically log in a user on a website using the Credential Management API?
• Helping users to create good passwords
• How to prompt for a password on Windows?
• How to store a password on Windows?
• How to implement Password reset feature in a web application?
• How to store a password in a web application?
• Cryptography in .NET
• Stop using IntPtr for dealing with system handles

2018

• JWT authentication with ASP.NET Core

2017

• Validating user with cookie authentication in ASP.NET Core 2
• Enable BitLocker AES-XTX 256 encryption algorithm
• Lock a BitLocker drive without restarting
• Adding a free SSL certificate to a website hosted on nginx using Let's Encrypt
• Improve the security of your website using SSL and HSTS with ASP.NET Core
• Improve the login experience with the Credential Management API

2016

• Using Let's encrypt with ASP.NET Core
• IIS Express & SSL
• What's new in SQL Server 2016: Always encrypted
• What's new in SQL Server 2016: Row-Level Security
• What's new in SQL Server 2016: Dynamic Data Masking

2014

• Windows Data Protection API (DPAPI)
• Mots de passe oubliés
• Stockage des mots de passe

2012

• ASP MVC: Mass Assignment
• Cross-site scripting (XSS)
• ASP MVC and XSRF
• How to prevent CSRF attacks
• SQL injections