Overview
J.D. Meier and the rest of the Patterns & Practices team over at Microsoft are at it again (when did they stop?). If you haven't checked out Guidance Explorer Web Edition, you should and bookmark it now! Here's the link:
I knew about this site way back when I was at Microsoft, but they've made significant improvements since then. It gives you instant access to all the patterns and practices developed at Microsoft and it's a great tool to find out the best ways to identify, mitigate and learn about common coding mistakes that can leave you exposed to malicious hackers. Checklists, methodologies, all there.
For instance, want to learn how to defend your application from SQL injection attacks, type "sql injection" in the search box. Cross site scripting (XSS)? Type "XSS" into the search box and you get everything you need to know from a variety of angles like input validation, authentication etc.
Enjoy,
--Kevin
e premte, 21 shtator 2007
Subscribe to:
Post Comments (Atom)
2 comments:
Your link to the Guidance Explorer is borked; the direct link to the site does work though
You're right, thanks for letting me know. Guidance Explorer moved to CodePlex:
http://www.codeplex.com/guidanceExplorer
Thanks,
--Kevin
Post a Comment