Penetration Testing: Re: Injection attacks in ASPX/ASP.NET applications

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Re: Injection attacks in ASPX/ASP.NET applications

From: "Morning Wood" <se_cur_ity () hotmail com>
Date: Sun, 31 Aug 2008 12:15:00 -0700

I should have been more clear, ASP / ASP.NET can be very insecure withoutproper implimentation

( which is found in about 80% od these types of instalations )

I have seen very secure sites when proper coding / filtering practices havebeen utilized.


( no need to start a war here )

cheers,

wood


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes inSecuring Web Applications

Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

By Date By Thread

Current thread:

Re: Injection attacks in ASPX/ASP.NET applications Serg B (Sep 02)
- <Possible follow-ups>
- Re: Injection attacks in ASPX/ASP.NET applications Morning Wood (Sep 02)
  - Re: Injection attacks in ASPX/ASP.NET applications Serg B (Sep 03)
- Re: Injection attacks in ASPX/ASP.NET applications Krugger (Sep 02)
- Re: Injection attacks in ASPX/ASP.NET applications David Howe (Sep 02)
- RE: Injection attacks in ASPX/ASP.NET applications Wong Yu Liang (Sep 02)
  - RE: Injection attacks in ASPX/ASP.NET applications Pennington, Coby (Sep 03)