Inside the new ValidateRequest feature
Good posting on the XSS protection features in .NET v1.1 from a developer perspective.
From the PenTesters P.O.V I reckon the most interesting bit is the comments on what fields are not run through this validation, by default...


raesene

Security Geek, Penetration Testing, Docker, Ruby, Hillwalking