Sholo.Web.Security

  •        75

Sholo.Web.Security contains several tools to improve the security of ASP.NET applications. Make FormsAuthentication stateful, strengthen FormsAuthTicket validation, detect & prevent Padding Oracle exploit, kick/ban users & IP's, detect multiple logins from different IP's, etc.

http://sws.codeplex.com/

Tags
Implementation
License
Platform

   




Related Projects

SecureCookieHttpModule


Secure your session cookie (and other session-based) cookies for replay attacks using this easy to use ASP.NET HttpModule.

Helpers.Net.Security


Membership Provider, Forms Authentication and security related features for .net

Padding-Oracle-Attack - A demonstration of a padding Oracle attack in C#


A demonstration of a padding Oracle attack in C#

SQL Compact ASP.NET Membership, Role and Profile provider


Implementation of a ASP.NET 4.0 Membership, Role and Profile provider for SQL Server Compact 4.0, for use with Forms Authentication for web sites using only SQL Server Compact 4.0.

Single Sign On - 2.0 Web Service Membership Provider


In short, this is simply a pass-through web service membership provider and role provider library. I've taken advantage of the 2.0 membership provider model to allow pre-existing applications to easily integrate this library. The idea is to have one centrally hosted asp.net we...



padding-oracles - Generic Python asynchronous padding oracle exploit


Generic Python asynchronous padding oracle exploit

DotNetNuke


DotNetNuke is the most widely adopted web content management system (WCM or CMS) and application development platform for building web sites and web applications on Microsoft .NET.

Altairis Web Security Toolkit


Set of ASP.NET providers (Membership, Role, Profile) which can be bound to simple and highly configurable table structure on Microsoft SQL Server or use plain text file instead of database. Also includes basic authentication module for IIS 7.0

Form State Keeper


Form State Keeper is a HttpModule that will keep the state of a web form, even if the the forms authentication times out and the user has to login again after clicking the submit button. Works with WebForms, Ajax and ASP.NET MVC.

SharePoint 2010 FBA Pack


Forms Based Authentication management tools for SharePoint 2010. Manage users and roles. Register User, Change Password and Recover Password web parts.

SharePoint 2013 FBA Pack


Forms Based Authentication management tools for SharePoint 2013. Manage users and roles. Register User, Change Password and Recover Password web parts.

dotnetpaddingoracle - Python Implementation of a .NET Padding Oracle Attacker


Python Implementation of a .NET Padding Oracle Attacker

Paddo - Framework for auditing and conducting "padding oracle" attacks


Framework for auditing and conducting "padding oracle" attacks

PadBuster - Automated script for performing Padding Oracle attacks


Automated script for performing Padding Oracle attacks

POET - Padding Oracle Exploit Code


Padding Oracle Exploit Code

python-paddingoracle - A portable, padding oracle exploit API


A portable, padding oracle exploit API

Oracle-FMW-Amelia


OPSS Application Role Security Migration Helper. This project was originally designed to provide a quicker mechanism for migrating Oracle BI 11g security. It clearly has a resounding place in other OPSS based FMW applications. Project Amelia is a new open source project to assist with migrating and documenting Policy Store Security in Oracle Fusion Middleware, specifically for but not limited to Oracle Business Intelligence 11g. The project contains the core scripts and binary files req

ASP.NET Membership Micro Web Site


ASP.NET Membership Micro Web Site For Visual Web Developer 2008 Express (C#). Simple start-up web site for user authentication: - Login - Register - Password Recovery - Update User Details - Change Password Multi-language support added. Can be easily translated to any langu...

oraclesql-pygments-lexer - Pygments lexer for Oracle PL/SQL and Oracle Forms


Pygments lexer for Oracle PL/SQL and Oracle Forms

Integryst-UserAuthSourceFlipper


Every user and group in WCI has an object ID. When a new Authentication Source is introduced with the same users (such as when migrating from AD to LDAP), it is necessary to swap the object IDs of users and groups in order to preserve security settings and group membership. This code uses direct database connections to swap object IDs of users and group.