Search This Blog

Tuesday, July 31, 2012

Application Security Practices for .NET Developers

I have been working in the software development field for some time now and have been searching for a distilled list of how to approach Microsoft's .NET application with respect to OWASP. It seems I have found a great article developed by Troy Hunt over at This document is quite extensive for it's cause. I have found it to be a great asset for Microsoft .NET related concerns with respect to OWASP 2010 Top 10 list.

I'm working with some folks over at OWASP to help create a similar document for Java technologies. As developers we should really think about security in the development process instead of an afterthought which is how security usually is scoped. In my experience I have found many issues in software related to security and if developers would consider security a first-class citizen we would not be seeing vulnerabilities & breaches broadcast over the news channels every week.

For more info on this subject visit for more info.

Monday, April 18, 2011

Open Web Application Security Project

This is my first blog post for my new blog about software security. I will be blogging about security flaws, tips & tricks, hacks, how to's, and some do's/don'ts. If you are interested in hearing about great post about information security, please subscribe. If you would like to know more about my original post about this blog check my main blog at:

If you are interested in the Open Web Application Security Project that hosts a wealth of knowledge on security standards, protocols, and general information is here: