OWASP .NET Shield

  •        0

Code to protect .NET Web applications and services against sql injection and cross site scripting attacks.

http://shield.codeplex.com/

Tags
Implementation
License
Platform

   




Related Projects

OWASP Joomla Vulnerability Scanner Project


Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla! web site. A regularly-updated signature-based scanner that can detect file inclusion, sql injection, command execution, XSS, DOS, directory traversal vulnerabilities of a target Joomla! web site. It Searches known vulnerabilities of Joomla! and its components, Web application firewall detection and lot more.

CakePHP - Rapid Development PHP framework


CakePHP makes building web applications simpler, faster and require less code. Its features include Database support, Application scaffolding, MVC architecture, Built-in validation, Data Sanitization, Flexible Caching, Localization, SQL injection prevention, Form tampering protection, Authentication and lot more.

w3af - Web Application Attack and Audit Framework


w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities. It can find Cross site scripting, SQL Injection and lot more. The framework implements web and proxy servers which are easy to integrate into your code in order to identify and exploit vulnerabilities.

GameOver


Training and educating about the web security

OWASP Mantra - Security Framework


OWASP Mantra - Free and Open Source Browser based Security Framework, is a collection of free and open source tools integrated into a web browser, which can become handy for penetration testers, web application developers, security professionals etc.

sqlsus


sqlsus is an open source (My)SQL injection tool, written in perl. It focuses on speed and efficiency, optimising the available injection space. It provides an easy to use interface with lots of neat features. For more information, please visit http://sqlsus.sf.net

SQLSentinel


OpenSource tool for sql injection security testing

Atomic Tanks


Atanks is a multi-platform Scorched Earth clone similar to the Worms series of games. Annihilate the other tanks to earn money, then spend it on bigger and better shields and weapons to wipe out the opposition.

Wapiti - Web application vulnerability scanner / security auditor


Wapiti allows you to audit the security of your web applications. It performs "black-box" scans, i.e. it does not study the source code of the application but will scans the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets this list, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable. It is able to differentiate ponctual and permanent XSS vulnerabilities.

Mole


Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique. The Mole uses a command based interface, allowing the user to indicate the action he wants to perform easily. The CLI also provides auto-completion on both commands and command arguments, making the user type as less as possible.