I'm not sure this is the right forum, especially as this is such a broad topic and your query is very general, but just to give you some pointers, there are two areas you could investigate:
The first, IIS, as it will capture many XSS attacks. Make sure it is up to date and locked down.
The second, MVC forms have a HTML helper @Html.AntiForgeryToken() which you could look into.
Implement Umbraco Website without session Hijacking
Hi All,
I am implementing Hack Proof Umbraco MVC Application. how to implement the below scenarios to secure from session hijacking.
1.Secure your ASP.NET applications from XSS Attack. 2.How to prevent Session Hijacking.(AspnetSession_id)
Thanks, Pradeep
Pradeep,
I'm not sure this is the right forum, especially as this is such a broad topic and your query is very general, but just to give you some pointers, there are two areas you could investigate:
The first,
IIS
, as it will capture many XSS attacks. Make sure it is up to date and locked down.The second, MVC forms have a HTML helper
@Html.AntiForgeryToken()
which you could look into.Thanks
Muiris
Thanks MuirisOG, That sounds good Cheers..!
is working on a reply...