FXCop Checks The Coding Practices Of Your Dot Net Assemblies

Thursday, May 29, 2008 by Mistlee


Can't see any images? - Click To View!




Click to Play

Go Beyond Your Brand!
Rok Hrastnik shares his company's interesting story with Mike McDonald at the 25th Annual ACCM Conference. Studio Moderna began publishing email...

Recent Articles

Understanding How Bitlocker Works
In an ongoing debate on if Bitlocker is truly secure, and if not what are the best ways to hack into the system, you need to understand how bitlocker works and...

Problems With Server Header Status Codes
Members at Webmaster World discusses about the problem of server header status codes. It is one of those topics that aren't touched often! According to the Webmasters World thread, almost every server...

Windows Vista SP1 Warrants Caution
If you're thinking about upgrading to Windows Vista SP1, you may want to think again. Although it was supposed to address users' and administrators' complaints...

IP Address As Personal Information
In some very interesting news coming out of the European Union, the IP Address that you use should be regarded as "personal information" meaning it now has the potential to fall under the safeguards...

Router Down: Some Days You Just Can't Win
Some days you just can't win. One of my clients (you know who you are) had such a day yesterday. It started with doing some reprogramming of a Fortinet WiFi...

05.29.08

FXCop Checks The Coding Practices Of Your Dot Net Assemblies

By Dan Morrill

FXCop is one of the very few free tools you can use to check on the coding practices of a dot net assembly.

If your company is building things in dot net, then this is a tool you want to run every single home grown code set through. Additionally though, it can be used to take a look at other folks dot net assemblies to see how well they coded them, and see if you want to use them.

This video covers the reverse engineering and security check of a web 2.0 dot net assembly for YouTube that was pulled randomly off the internet, and the results were surprising.



As companies start to do a wider adoption of Web 2.0 components that they have used off the internet, your developers or security team should be using FXCop to check each of those API's that are being used to make sure that they follow secure coding practices, and that the API does not introduce vulnerabilities in your web 2.0 application.

Comments


About the Author:
Dan Morrill has been in the information security field for 18 years, both civilian and military, and is currently working on his Doctor of Management. Dan shares his insights on the important security issues of today through his blog, Managing Intellectual Property & IT Security, and is an active participant in the ITtoolbox blogging community.
About SysAdminNews
SysAdminNews is a collection of articles, news and commentary designed to keep system administrators informed about the latest trends impacting their profession. Updates and Advice for System Administrators





SysAdminNews is brought to you by:

SecurityConfig.com NetworkingFiles.com
NetworkNewz.com WebProASP.com
SysAdminNews.com SQLProNews.com
ITcertificationNews.com SysAdminNews.com
LinuxProNews.com WirelessProNews.com
CProgrammingTrends.com ITManagementNews.com





-- SysAdminNews is an iEntry, Inc. publication --
iEntry, Inc. 2549 Richmond Rd. Lexington KY, 40509
2008 iEntry, Inc.  All Rights Reserved   Privacy Policy   Legal

archives | advertising info | news headlines | free newsletters | comments/feedback | submit article

Unsubscribe from SysAdminNews.
To unsubscribe from SysAdminNews or any other iEntry publication, simply send an email request to: support@ientry.com

Database Forum Updates and Advice for System Administrators SysAdminNews News Archives About Us Feedback SysAdminNews.com About Article Archive News Downloads WebProWorld Forums iEntry Advertise Contact Jayde

0 comments: