antixsslibrary Archives

What is the difference between AntiXss.HtmlEncode and HttpUtility.HtmlEncode?

September 2, 2022 by Magenaut

I just ran across a question with an answer suggesting the AntiXss library to avoid cross site scripting. Sounded interesting, reading the msdn blog, it appears to just provide an HtmlEncode() method. But I already use HttpUtility.HtmlEncode().

Why use Microsoft AntiXSS library?

August 31, 2022 by Magenaut

When you can simply encode the data using HttpUtility.HtmlEncode, why should we use AntiXss.HtmlEncode?

Sanitize HTML before storing in the DB or before rendering? (AntiXSS library in ASP.NET)

August 27, 2022 by Magenaut

I have an editor that lets users add HTML that is stored in the database and rendered on a web page. Since this is untrusted input, I plan to use Microsoft.Security.Application.AntiXsSS.GetSafeHtmlFragment to sanitize the HTML.