A long time ago, in a different life, I produced a fully functional Intrusion Detection System for web projects developed in C# and/or VB.NET using the .NET Framework. The project was called .NETIDS and was a port of PHPIDS. It feature(s/d) individual page scanning, loading as a web module (callback via reflection to specified code in web.config) and the unfeasibly resource-intensive output scanning.