Hey all, so, just got back from a pretty good "Secure Coding" conference from SANS. Learned a lot of stuff. Including some simple countermeasure you can implement on you site. Not all browsers support them, but, with them, it helps prevent Cross Site Scripting.
I have create a little .net library that will help with implementing them, along with a sample web app. I encourage you all to go look at it at: https://github.com/veccsolutions/Vecc.WebSecurity
It's really easy to use. Hopefully you all like it. Now to go back through the books and learn more about how to stop the "bad people".