XSSDetect runs as a Visual Studio plug-in and can detect potential XSS issues in managed code.
XSSDetect is a static code analysis tool that helps identify Cross-Site Scripting security flaws found within Web applications. It is able to scan compiled managed assemblies (C#, Visual Basic .NET, J#) and analyze dataflow paths from sources of user-controlled input to vulnerable outputs. It also detects whether proper encoding or filtering has been applied to the data and will ignore such "sanitized" paths.
24 ottobre 2007
Iscriviti a:
Commenti sul post (Atom)
0 commenti:
Posta un commento