[{"data":1,"prerenderedAt":95},["ShallowReactive",2],{"blog:2007:gsdf-august-2007-postmortem":3,"blogMore-Development":81,"comments-gsdf-august-2007-postmortem":94},{"id":4,"title":5,"body":6,"category":61,"commentCount":62,"date":63,"description":64,"excerpt":65,"extension":66,"filenames":67,"hidden":68,"image":67,"meta":69,"minutes":62,"navigation":70,"path":71,"seo":72,"showCategory":67,"stem":73,"tags":74,"updated":67,"url":78,"wordCount":79,"__hash__":80},"content\u002Fblog\u002F2007\u002Fgsdf-august-2007-postmortem.md","Web Application Security for Developers presentation",{"type":7,"value":8,"toc":55},"minimark",[9,21,24,32,37],[10,11,12,13,20],"p",{},"Last nights Guernsey Software Developers Forum meeting was sparsely attended with a number of the regulars attendees absent. There were however two new faces including ",[14,15,19],"a",{"href":16,"rel":17},"https:\u002F\u002Fwww.kieransenior.co.uk",[18],"nofollow","Kezzer"," who I’d been chatting to on-line for years.",[10,22,23],{},"Hopefully the low numbers were down to the seasonal summer holidays and the subsequent knock-on effect that we couldn’t get email out to the BCS Guernsey division to gather sufficient awareness.",[10,25,26,27,31],{},"I did a short presentation on ",[28,29,30],"strong",{},"Web Application Security for Developers"," that covered HTML injection, SQL injection and cross-site scripting including some live demonstrations on sample code. Slides and sample are available although without audio or screen cast of the demonstrations until I work out how to do that with Keynote.",[33,34,36],"h3",{"id":35},"downloads","Downloads",[38,39,40,48],"ul",{},[41,42,43,47],"li",{},[14,44,46],{"href":45},"https:\u002F\u002Fdl.damieng.com\u002Fpresentations\u002FWebSecurityForDevelopers1.pdf","Web Application Security for Developers (PDF)"," (120 KB)",[41,49,50,54],{},[14,51,53],{"href":52},"https:\u002F\u002Fdl.damieng.com\u002Fpresentations\u002FWebSecurityForDevelopers1Sample.zip","Sample of vulnerable and secure code (ASP.NET)"," (196 KB)",{"title":56,"searchDepth":57,"depth":57,"links":58},"",2,[59],{"id":35,"depth":60,"text":36},3,"Development",1,"2007-08-16T11:50:41+00:00","Last nights Guernsey Software Developers Forum meeting was sparsely attended with a number of the regulars attendees absent. There were however two new faces including Kezzer who I’d been chatting to on-line for years.","[object Object]","md",null,false,{},true,"\u002Fblog\u002F2007\u002Fgsdf-august-2007-postmortem",{"title":5,"description":64},"blog\u002F2007\u002Fgsdf-august-2007-postmortem",[75,76,77],".NET","ASP.NET","security","\u002Fblog\u002F2007\u002Fgsdf-august-2007-postmortem\u002F",134,"18uDD_B2l89j5FAd78PYajVdZ0R5bfPku10N_xoS1Yg",[82,86,90],{"title":83,"date":84,"url":85},"Transactions in the MongoDB EF Core Provider","2025-10-25","\u002Fblog\u002F2025\u002Fmongodb-explicit-transactions\u002F",{"title":87,"date":88,"url":89},"Queryable Encryption with the MongoDB EF Core Provider","2025-09-22","\u002Fblog\u002F2025\u002Fmongodb-queryable-encryption\u002F",{"title":91,"date":92,"url":93},"Lazy Loading with EF Core Proxies","2025-04-02","\u002Fblog\u002F2025\u002Fef-proxies\u002F",[],1780900531219]