Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

LinkedIn Learning

ASP.NET: Security

via LinkedIn Learning

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Learn about common vulnerabilities in ASP.NET web applications and practical security solutions to mitigate the risks.

Syllabus

Introduction
  • Unhackable ASP.NET applications
  • Security is important!
  • What you should know
  • Sample application introduction
  • Sample application tour
1. Mitigating Common Attacks
  • OWASP Top 10
  • Cross-site scripting (XSS): The attack
  • Cross-site scripting (XSS): The defense
  • Cross-site scripting (XSS) in JavaScript
  • Same-origin policy and CORS
  • Enabling CORS in ASP.NET Web API
  • SQL injection with ADO.NET
  • SQL injection with Entity Framework
  • Fixing SQL injection
  • Cross-Site Request Forgery (CSRF)
  • Defending against CSRF
2. Storing Data
  • Storing secrets in Web.config
  • Externalizing Web.config settings
  • Encrypting Web.config
  • Azure Key Vault
  • Managing the Key Vault with Azure Shell
  • Password hashing
  • Adding password hashing to the app
3. Starting with IdentityServer
  • On IdentityServer
  • Configuring IdentityServer
  • Authenticating against IdentityServer
  • Authenticating in the app
  • Authorizing against IdentityServer
  • Authorizing in the app
4. Secure Configuration
  • Introduction
  • Securing cookies
  • Securing sessions
  • Setting cookie attributes in the app
  • Enforcing HTTPS
  • Error handling
  • Hiding server information
  • Hiding more server information
  • Security HTTP headers
Conclusion
  • Next steps

Taught by

Christian Wenz

Reviews

4.7 rating at LinkedIn Learning based on 98 ratings

Start your review of ASP.NET: Security

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.