Collaborate Disseminate
With .NET Conf 2024 and the release of .NET 9 behind us, I’ve finally had a chance to watch the relevant session videos from the show. And there is unexpectedly at least one other change to WPF’s support for Windows 11 theming, one that addresses a sho… Continue reading Modernizing .NETpad: WTF, WPF (Premium)
As promised, Microsoft today released .NET 9, the latest version of its free and open-source application platform.
The post Microsoft Releases .NET 9 appeared first on Thurrott.com.
Continue reading Microsoft Releases .NET 9
Microsoft today issued a reminder that .NET Conf 2024 is next week, coinciding with the release of .NET 9 to stable.
The post .NET 9 Arrives Next Week With .NET Conf 2024 appeared first on Thurrott.com.
Continue reading .NET 9 Arrives Next Week With .NET Conf 2024
I am doing some security research on an application and I am wondering where it is based on.
It appears to be changing each request (so not bound to a user session). Is it just a random value, which should exists within the system or even … Continue reading Where is the .NET __RequestVerificationToken based on?
Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity tools. Continue reading Patch Tuesday, October 2024 Edition
I am having a small .NET console application that the user launches on its local machine, passing a path argument to which the application is writing a file.
Can this be considered a path traversal vulnerability?
I was thinking this is not… Continue reading Is path traversal a valid vulnerability valid for a windows desktop application?
I have asked this already on Stack Overflow, but got a suggestion to ask in this community too.
I’m working on implementing an XML encrypting / decrypting application in .NET with support for ECDH-ES because clients will use EC key pairs t… Continue reading Is XML Encryption 1.1 Key Agreement test cases decryption possible in .NET? [closed]
I implement a .NET application that has a HTTPS API. A website makes requests to my HTTPS API. The website has a login page and other features.
Do I show a Captcha on the website if a new session is created? Do I show a Captcha on the webs… Continue reading Best timing/safest way to show Captchas on a website?
I implement a server application in .NET. I just want to know which security headers I need to set if I use HTTPS. I know about the HttpOnly and SameSite Cookies. OWASP has a recommendation HTTP Headers Cheat Sheet but do I need every sing… Continue reading Which security Headers for HTTPS?
I try to implement a secure user login in my .net application. The first password is hashed with argon2id. The salt and the hashed password is stored in a database. SSL encryption and HttpOnly Cookie is used.
Now i want to add a multifacto… Continue reading Whats the safest way to store 2fa/mfa secret key in database?