Bill Morefield
I started with an Atari 400 computer, which inspired me to pursue a degree in Computer Science. I worked in networks and web development most of my professional career and currently manage the computer network and computer security for a college in Tennessee. I primarily develop in ASP.NET, but also work with PHP and Rails on occasion.
Tutorials
  • Code
    Authorization and Protecting Web Resources in ASP.NETDotnet wide retina preview
    102 shares
    As a web developer, an important security aspect of a site them comes in ensuring that users do not have access to actions they should not perform. The consequences of not protecting it can be serious. Let’s look at an overview of authorization and how to implement it in ASP.NET.Read More…
  • Code
    Preventing XSS in ASP.NETDotnet wide retina preview
    154 shares
    Learn how to secure your ASP.NET web applications via external input validation, .NET's Request Validation, proper HTML encoding and using the AntiXSS library. Read More…
  • Code
    Securely Handling User's Login CredentialsSecure wide retina preview
    261 shares
    Consider the following tips on how to properly secure your user's login credentials.Read More…
  • Code
    Preventing Code InjectionCsrf dotnet retina preview
    311 shares
    Often, websites seem to exist primarily to put something into a database in order to pull it out later. While other database methods, such as NoSQL, have gained popularity in recent years, data for many websites still resides in the traditional SQL database. This data often consists of valuable personal information such as credit card numbers and other personal information of interest to identity thieves and criminals. Hackers therefore always look to get this data. One of the most common targets of these attacks is the SQL databases that lie behind many web applications through a process of SQL Injection.Read More…
  • Code
    Understanding Cross-Site Request Forgery in .NETCsrf dotnet retina preview
    24 shares
    You can only produce secure web applications by taking security into account, from the start. This requires thinking of the potential ways someone could attack your site as you create each page, form, and action. It also requires understanding the most common types of security problems and how to address them.Read More…