ASP.NET Core Security. Novice to Consecrated

Focused View

Dawid Farbaniec

52:13

42 View

1 - Introduction

1 - Introduction.mp4

01:15

2 - ASPNET Core and MVC Security

2 - Misconfiguration Protection.mp4

05:00

3 - Network Traffic Sniffing.mp4

05:46

4 - Malicious Implant Injection.mp4

04:11

5 - Safe Methods.mp4

04:20

6 - Parameter Tampering.mp4

04:26

7 - Password Policy.mp4

02:39

8 - CrossSite Request Forgery CSRFXSRF.mp4

02:47

9 - Open Redirect Attack.mp4

03:20

10 - Path Traversal Attack.mp4

06:50

11 - Honeypot Example.mp4

04:03

12 - Insecure Deserialization Mechanism.mp4

02:44

13 - Crawler.txt

13 - Forced Browsing Technique.mp4

04:52

3 - Extras

14 - VulnerableASPNETCoreApp.zip

14 - Vulnerable ASPNET App Sample.html

Description

Learn to think like ethical hacker about your ASP.NET application security

What You'll Learn?

Learn about ASP and .NET built-in security mechanisms
Enforce Transport Layer Security and HSTS to prevent network sniffing
Write code in Razor syntax to prevent malicious script implant injection
Familiarize with GET and POST methods in Hyper Text Transfer Protocol (HTTP)
Familiarize with Web Parameter Tampering and Overposting attacks
Create good user password policy for application
Familiarize with Cross-Site Request Forgery (CSRF/XSRF) attacks
Learn what is Open Redirect vulnerability
Simulate Path Traversal attack scenario in laboratory environment
Create honeypot traps in web app to mislead unethical hackers
Use serialization and deserialization mechanisms wisely
Learn about Forced Browsing technique

Who is this for?

Students learning ASP that want to focus on security of their apps

Students bored with creating basket for e-commerce web apps

Future cybersecurity specialists

Beginner ASP and .NET developers

What You Need to Know?

You should have basic understanding of C# language syntax

You should be able to download and run sample ASP and .NET project in Visual Studio

More details

Description
Welcome to ASP.NETÂ Core Security course for .NET 7 and newer!
These materials are essential knowledge about ASP.NET built-in protection mechanisms plus we will learn to think like a hacker and this is our first step towards defensive programming and increased security of created applications. In the laboratory we will use sample application in ASP.NET technology with various vulnerabilities to simulate attack scenarios and other experiments.
When you look at the course length, then you can see that these materials are knowledge concentrate.
We learn how to enforce Transport Layer Security encryption to protect against network traffic sniffing. Next we look at sharp Razor syntax and how it protects us from malicious implant injection. Then we return to fundamentals like GET and POSTÂ methods of HTTP and how to create more secure controller actions in ASP and .NETÂ technology.
Most of lectures are ethical hacking of our vulnerable application sample.
We will experiment with:
Parameter Tampering,
Overposting Attack,
Password Policy,
Cross-Site Request Forgery (CSRF/XSRF),
Open Redirect Attack,
Path Traversal Attack,
Honeypot Example,
Insecure Deserialization,
Forced Browsing Technique and more!
Enable Closed Captions (CC) for better accessibility and here we go!
Do not forget that you have my online technical assistance.
Who this course is for:
Students learning ASP that want to focus on security of their apps
Students bored with creating basket for e-commerce web apps
Future cybersecurity specialists
Beginner ASP and .NET developers

User Reviews

Rating

average 0

Total votes0

Focused display

ASP.NET Core

Dawid Farbaniec

Instructor's Courses

Fascinated with cybersecurity. Open to help and share what have learnt. Friend of animals. Ex-vaper, quitted nicotine vaping in December 2020. Addicted to writing educational code samples, tools and technical texts.EducationMaster of Science: „Windows x64 shellcode/payload generator for ethical hacking”.Bachelor of Science: „Technologies of creating and defending from malicious computer programs”.EthicsInformation Technology infrastructure is like a living organism. Controlled exposure of a biological organism to infection increases its immunity. It is similar with IT systems, but here these controlled infections are red team operations, penetration tests and threat simulations. I produce tools and educational materials for schools, colleges, novice ethical hackers and future cybersecurity professionals. My vision is to provide high quality computer programs, source codes and educational materials. I follow my vision in ethical, lawful and responsible way.Support and code assistanceFree assistance with code and technical support guaranteed when learning from my educational materials. Please use Udemy Questions and Answers or write an e-mail.pl-PLBezpłatna pomoc z kodem i wsparcie techniczne gwarantowane podczas nauki z moich materiałów edukacyjnych. Skorzystaj z funkcjonalności pytań i odpowiedzi Udemy lub napisz e-mail.

Udemy

View courses Udemy

Students take courses primarily to improve job-related skills.Some courses generate credit toward technical certification. Udemy has made a special effort to attract corporate trainers seeking to create coursework for employees of their company.