Overview
Explore the power of live static analysis for secure coding in .NET applications through this 54-minute conference talk from AppSecUSA 2016. Dive into the .NET Compiler Platform (Roslyn) APIs and learn how to create custom static analysis rules for Visual Studio 2015. Discover how to integrate secure code scanning into your development process, addressing the gap left by discontinued tools like CAT.NET. Watch demonstrations of Visual Studio static analysis rules in action and gain practical knowledge to enhance your organization's application security. Led by Eric Johnson, a Senior Security Consultant and SANS Instructor, this talk equips you with the tools to implement continuous integration and improve code quality in your .NET projects.
Syllabus
Eric Johnson - Continuous Integration: Live Static Analysis using Visual Studio & the Roslyn API
Taught by
OWASP Foundation