Securing IIS Websites

Focused View

Jeremy Morgan

2:41:00

40 View

0. Course Overview

0. Course Overview.mp4

01:04

1. Securing Windows Systems

0. Introduction.mp4

00:59

1. Reducing Your Attack Surface.mp4

02:39

2. Updating Windows.mp4

04:48

3. Understanding Windows Firewall.mp4

02:13

4. Configuring Windows Firewall.mp4

05:09

5. Disabling Windows Services.mp4

03:24

6. Removing Windows Features.mp4

03:10

7. Securing Windows Accounts.mp4

05:42

8. Conclusion.mp4

00:40

2. Reducing IIS Vulnerabilities

0. Introduction.mp4

00:44

1. IIS Attack Surface.mp4

03:02

2. Reducing Exposed Information.mp4

05:20

3. IIS Vulnerabilities.mp4

05:57

4. Removing Unneeded IIS Modules.mp4

03:44

5. Locking Down Error Pages.mp4

03:40

6. IP Address Restrictions.mp4

05:39

7. HTTP Request Filtering.mp4

07:44

8. Summary.mp4

00:31

3. Leveraging SSL and TLS on Your IIS Server

0. Introduction.mp4

00:39

1. SSL Basics.mp4

04:43

2. Cipher Suites.mp4

04:21

3. Disabling TLS-SSL.mp4

02:30

4. Installing SSL Certificates.mp4

04:48

5. HTTP-2 and HTTP-3.mp4

04:51

6. Conclusion.mp4

00:33

4. Familiarizing Yourself with Exploits

0. Introduction.mp4

00:29

1. Buffer Overflow.mp4

03:33

2. CRLF Injection.mp4

02:35

3. Phishing.mp4

01:24

4. Cross Site Scripting.mp4

01:42

5. SQL Injection.mp4

03:40

6. Man in the Middle (MITM) Attacks.mp4

02:20

7. Brute Force - Dictionary Attacks.mp4

01:30

8. Summary.mp4

00:36

5. Securing Your Applications

0. Introduction.mp4

00:37

1. Managing Accounts.mp4

06:39

2. Cross-Origin Resource Sharing (CORS).mp4

04:27

3. Securing Application Pools.mp4

03:54

4. File and Folder Security.mp4

04:18

5. Handling Mappings.mp4

05:00

6. Authentication Methods.mp4

05:51

7. Summary.mp4

00:25

6. Monitoring Your Server

0. Introduction.mp4

00:33

1. Reviewing Access Logs.mp4

04:54

2. Event Tracing For Windows.mp4

03:06

3. Windows Event Viewer.mp4

02:09

4. Using Log Parser.mp4

04:53

5. Health and Diagnostics.mp4

03:45

6. Creating a Security Monitoring Plan.mp4

03:35

7. Summary.mp4

00:31

Description

In this course, you'll learn how to lock down your IIS server. You'll discover various methods of attack, how they work and how to prevent them. You'll learn how to monitor your server to prevent future attacks.

What You'll Learn?

In this course, Securing IIS Websites, you'll gain the ability to secure your IIS Webservers and prevent attacks. First, you'll explore how to reduce your attack surface to avoid attracting attackers to your site. Next, you'll discover how to lock down IIS to prevent attacks from being successful. Finally, you'll learn how to monitor your server to identify or prevent attacks from happening. When you’re finished with this course, you’ll have the skills and knowledge of IIS Security needed to keep your websites safe.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Network Security

Information Security

Jeremy Morgan

Instructor's Courses

Jeremy Morgan is on a mission to help developers get better at what they do. He's a Senior Developer Evangelist for Pluralsight, and an avid tech blogger and speaker. He has two decades of experience as an engineer building software for everything from Fortune 100 companies to tiny startups. He stays immersed in the .NET/Azure world while always keeping one foot in the Linux ecosystem building Python and Go applications. He's primarily focused on backend API development and cloud infrastructure, and finding new ways to deploy software safely and quickly. Jeremy enjoys teaching through his popular tech blog as well as contributing to open source as a .NET Foundation Member, and DevOps Institute Ambassador.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.