Anti-Cross Site Scripting Tool Added to ASP.NET 4.5

This week Microsoft announced the addition of its Anti-Cross Site Scripting (AntiXSS) library to ASP.NET 4.5. The tool was designed to prevent different types of script injection attacks that can be leveled against ASP.NET websites.

AntiXSS, which is part of the Web Protection Library (WPL), also comes with a Security Runtime Engine (SRE) which is able to automatically encode most of the output that is deemed at-risk. This stops any user generated content that comes from untrusted user input from being vulnerable to script injection attacks by encoding it.

This week Microsoft announced the addition of its Anti-Cross Site Scripting (AntiXSS) library to ASP.NET 4.5. The tool was designed to prevent different types of script injection attacks that can be leveled against ASP.NET websites.

View Article



Comments

  • There are no comments yet. Be the first to comment!

Leave a Comment
  • Your email address will not be published. All fields are required.

Top White Papers and Webcasts

  • Research results provide insight into current DevOps security practices at both large and mid-sized enterprises, and highlight multiple gaps that still exist between the opportunity to have security as a natural part of DevOps and the reality of current implementations.

  • In this highly valued report, you'll learn the results of "The Forrester Wave™: Hybrid Integration For Enterprises, Q4 2016" extensive research of the top Hybrid Integration Solutions, including each product's overall ranking, specific capabilities and strengths and weaknesses.

Most Popular Programming Stories

More for Developers

RSS Feeds

Thanks for your registration, follow us on our social networks to keep up-to-date