Exploitable C# Functions [closed]

by

Anything that uses regular expressions (particularly the RegularExpressionValidator). To see this, run a RegularExpressionValidator with the regex ^(\d+)+$ and give it 30 digits and an alpha character to validate against.

Some posts:

This is called a Regular Expression Denial of Service attack and it can bring a website to its knees.

More Related Contents:

  1. What are good ways to prevent SQL injection? [duplicate]
  2. JWT authentication for ASP.NET Web API
  3. Why is JsonRequestBehavior needed?
  4. ASP.NET Identity’s default Password Hasher – How does it work and is it secure?
  5. How to securely save username/password (local)?
  6. Requested registry access is not allowed
  7. How can I make my product as a trial version for 30 days?
  8. How can I obfuscate my c# code, so it can’t be deobfuscated so easily? [closed]
  9. Restrict access to a specific controller by IP address in ASP.NET MVC Beta
  10. MD5 hash with salt for keeping password in DB in C#
  11. In .NET/C# test if process has administrative privileges
  12. Storing credit card details
  13. Does using parameterized SqlCommand make my program immune to SQL injection?
  14. How to use a client certificate to authenticate and authorize in a Web API
  15. Encrypting credentials in a WPF application
  16. Best way to store encryption keys in .NET C#
  17. Securing a password in source code?
  18. How do I get the currently loggedin Windows account from an ASP.NET page?
  19. Child actions are not allowed to perform redirect actions, after setting the site on HTTPS [duplicate]
  20. Calculating HMACSHA256 using c# to match payment provider example
  21. How to convert SecureString to System.String?
  22. In .NET 4.0, how do I ‘sandbox’ an in-memory assembly and execute a method?
  23. How to access the stored credentials (PasswordVault?) on Win7 and Win8?
  24. Access files from network share in c# web app
  25. Compare password hashes between C# and ColdFusion (CFMX_COMPAT)
  26. C#.NET: Acquire administrator rights?
  27. RSA read PublicKey
  28. Shredding files in .NET
  29. Block requests after multiple unsuccessful logins
  30. difference between http.context.user and thread.currentprincipal and when to use them?

Leave a Comment