SQL injection is a common attack vector that remains one of the most prevalent security risks for applications today. One of the reasons SQL injection attacks are so pervasive is the fact that injection vulnerabilities are very easy for attackers to discover and exploit, sometimes with devastating consequences. On the other hand, mitigating SQL injection…
Tag: ASP.NET
IdentityServer is the de-facto security token service for ASP.NET and ASP.NET Core web applications and it is hugely popular within the .NET community. One of the most important security requirements to consider when setting up IdentityServer is the creation of a key (typically an X.509 certificate) which is used to cryptographically sign and validate tokens…
InWeb
Azure Application Insights is a powerful monitoring feature within the Azure cloud platform that can provide you with some pretty amazing insights into your web applications. By default, Application Insights captures a plethora of highly useful data points regarding both performance and user behaviour. The analysis of these metrics can assist you with speeding up…
InSecurity
For any application which is hosted on the web, it is essential that security is built in from the start. Enabling your web application to serve secure traffic over HTTPS and enforcing this policy is one of the first things that you should implement and this is just as important for web apps as it…
InAPIs
If you’re trying to come up with an error response model for your API, but are finding it difficult to settle on a format that is simple, yet future-proofed; look no further! In this article, I expound the virtues of the ‘Problem Details’ RFC standard and why I believe it’s a no-brainer to use it…