Difference between revisions of ".NET Penetration Testing"

From OWASP
Jump to: navigation, search
Line 26: Line 26:
 
===References===
 
===References===
 
[http://www.owasp.org/index.php/Rooting_The_CLR Rooting the CLR (Draft)]
 
[http://www.owasp.org/index.php/Rooting_The_CLR Rooting the CLR (Draft)]
 +
 
[http://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf Guideline on Network Security Testing]
 
[http://csrc.nist.gov/publications/nistpubs/800-42/NIST-SP800-42.pdf Guideline on Network Security Testing]
  
 
===Tools===
 
===Tools===
 
[http://www.owasp.org/index.php/Source_Code_Audit_Tools Source Code Audit Tools]
 
[http://www.owasp.org/index.php/Source_Code_Audit_Tools Source Code Audit Tools]

Revision as of 20:13, 15 April 2008

.NET Security Quick Reference

Contents

.NET Penetration Testing

Plan, Discover, Attack and Report - this section is for tools, checklists and references for penetration testing .NET web applications and services.

Areas of Concern

  • Planning the hack
  • Ethically hacking
  • Attack Vectors
  • Intelligence gathering
  • Reporting

Articles

References

Rooting the CLR (Draft)

Guideline on Network Security Testing

Tools

Source Code Audit Tools