Microsoft's official list of "banned" unsafe function calls. Basically this is a list of all the SafeCRT and StrSafe.h function equivalencies ... along with a short discussion of the relative merits for StrSafe vs. SafeCRT... also includes some *very* useful examples.
Michael Howard's blog post about SAL(Standard Annotation Language) and how you can improve security by annotating your function declarations. There's some seriously cool stuff here that could really save you some major headaches.