Cross-site scripting attacks are one of the most common attack vectors that plague Web applications. In this webcast, we provide an overview of the tools designed for discovery and mitigation of cross-site scripting vulnerabilities in Microsoft .NET applications. Specifically, we look at CAT.NET, which is a static code analysis tool developed by the Microsoft Information Security team to identify vulnerabilities in managed code. We also look at the next version of the Microsoft Anti-Cross Site Scripting (AntiXSS) library, which is used to mitigate cross-site scripting and was also developed by the Information Security team.
Presented by Anil Revuru
View the webcast