Recently Microsoft released a beta edition of Anti-XSS library V3.0. Here’s a list of some new features which were added in this release:

• An expanded white list that supports more languages
• Performance improvements
• Performance data sheets (in the online help)
• Support for Shift_JIS encoding for mobile browsers
• A sample application
• Security Runtime Engine (SRE) HTTP module

Also as you can read on Microsoft Connected Information Security Group blog they have also released a CTP version of CAT.NET (Microsoft Code Analysis Tool .NET) which is a managed code static analysis tool for finding security vulnerabilities such as Cross Site Scripting - SQL Injection - Process Command Injection - File Canonicalization - Exception Information, etc.

Downloads:

• Microsoft Anti-Cross Site Scripting Library V3.0 Beta (Kick It!)
• Anti-XSS V3.0 Beta Source Code
• Microsoft Code Analysis Tool .NET (CAT.NET) v1 CTP - 32 bit (Kick It!)
• Microsoft Code Analysis Tool .NET (CAT.NET) v1 CTP - 64 bit