Partilhar via


Security .Net Code Inspection Using Outlook 2007

In my previous post, Code Inspection - First Look For What To Look For, I've described how to look for sensitive data and hints in the compiled assemblies. The other challenge I was looking to solve is boosting my productivity. So with little magic of scripting (more magic here Scriptomania - Scripting Tools and Utilities) and generous help from my friend DIR (more here Security Deployment Inspection Using Office.) I've accomplished task of scanning all directories, and dumping all the strings into text files, like this:

All I had to do is go over each and every text file and look for funny things (depicted in Code Inspection - First Look For What To Look For). Pretty annoying: double click, scroll down, move to "Seen" folder - no marking and categorization or follow up capabilities - WAIT A MINUTE!!! Does not it sound like Outlook? So I dragged all the text files into my new shiny Outlook 2007 getting all the goodies it provides:

1. Move through items using up and down arrow using left hand.

2. Scroll the text in preview pane using mouse wheel by right hand.

3. Tag and categorize.

4. Everything else Outlook provides.

5. AND OF COURSE USING INSTANT SEARCH IS A REAL PLEASURE:

 

Enjoy

Comments

  • Anonymous
    March 31, 2007
    Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach
  • Anonymous
    March 31, 2007
    Here are couple of techniques I used for searching hints of SQL Injections in .Net apps. The basic approach
  • Anonymous
    April 18, 2007
    Imagine if security was cool like Silverlight .... But security is not that cool, so the biggest challenge
  • Anonymous
    May 13, 2007
    I used couple of RSS readers but lately I switched to my Outlook 2007 to meet WEB 2.0 era. Here is what
  • Anonymous
    December 01, 2007
    DIR /S /B /A:-D I use simple DIR command to generate file lists. It serves me in many scenarios. For
  • Anonymous
    December 01, 2007
    DIR /S /B /A:-D I use simple DIR command to generate file lists. It serves me in many scenarios. For
  • Anonymous
    January 03, 2008
    patterns&practices recently released new version of Guidance Explorer [GE]. One of the most important
  • Anonymous
    January 24, 2008
    How to streamline the process of capturing security flaws during security code review? How to save time