fbpx
Why SpiralTrain?
  • Learning by doing
  • Trainers with practical experience
  • Classroom training
  • Detailed course material
  • Clear content description
  • Tailormade content possible
  • Training that proceeds
  • Small groups
Questions? Call or mail us!
+31 (0) 30 - 737 0661

info@spiraltrain.nl
Download brochure

Course Security in C# .NET Development

The course Security in C# .NET Development provides C# developers with the essential knowledge and practical skills to effectively tackle security problems with web applications. Common security issues, as described in the OWASP Top Ten, are covered as well as best practices for dealing with security challenges in .NET C# code.

Region:
3 days
Sign up
€ 2250
Select start date
Make a choise
  • 03-06 till 05-06-2024
  • 05-08 till 07-08-2024
  • 07-10 till 09-10-2024
  • 02-12 till 04-12-2024
  • 03-02 till 05-02-2025
  • 07-04 till 09-04-2025
  • 09-06 till 11-06-2025
  • 11-08 till 13-08-2025
  • 13-10 till 15-10-2025
  • 08-12 till 10-12-2025
  • 09-02 till 11-02-2026
  • 08-04 till 10-04-2026
  • 10-06 till 12-06-2026
  • 12-08 till 14-08-2026
  • 14-10 till 16-10-2026
  • 09-12 till 11-12-2026
  • 10-02 till 12-02-2027
  • 05-04 till 07-04-2027
  • 07-06 till 09-06-2027
  • 09-08 till 11-08-2027
  • 11-10 till 13-10-2027
  • 06-12 till 08-12-2027
  • 07-02 till 09-02-2028
  • 10-04 till 12-04-2028
  • 05-06 till 07-06-2028
  • 07-08 till 09-08-2028
  • 09-10 till 11-10-2028
  • 11-12 till 13-12-2028
  • 05-02 till 07-02-2029
  • 09-04 till 11-04-2029
  • 11-06 till 13-06-2029
  • 06-08 till 08-08-2029
  • 08-10 till 10-10-2029
  • 10-12 till 12-12-2029
  • 11-02 till 13-02-2030
Select a region
Make a choise
  • Houten
  • Amsterdam
  • Rotterdam
  • Eindhoven
  • Zwolle
  • Online
  • Content
  • Training
  • Modules
  • General
    General
  • Reviews
  • Certificate

  • Course Security in C# .NET Development : Content

    Intro Secure Coding

    The course Security in C# .NET Development starts with an overview of the application security landscape, including common attack vectors and potential risks when developing C# code.

    Broken Access Control

    The course proceed with a discussion of how to prevent vulnerabilities as a result of broken access control. Attention is paid to Role Based Access Control (RABC), the correct implementation of session management and Access Control Lists.

    Cryptographic Failures

    Cryptographic weaknesses such as flawed encryption algorithms and incorrect use of cryptographic functions are also treated.

    Injection Flaws

    Then the dangers of injection are covered, such as SQL injection and cross-site scripting (XSS) and cross-site request forgery (CSRF). Secure coding practices to prevent injection are also explained, such as input validation, output encoding and parameterized queries.

    Insecure Design

    Insecure design is also on the program of the course Security in C# .NET Development with inadequate input validation, incorrect error handling and insecure authentication.

    Misconfiguration Failures

    Then it is highlighted how configuration errors can lead to security risks, such as the use of default settings and insufficient protection of sensitive data.

    NuGet Packages

    And attention is paid to the risks of external NuGet packages, how to assess NuGet packages and best practices for safely integrating NuGet packages.

    Logging and Monitoring

    Finally it is discussed how logging and monitoring can improve the security of C# applications. Attention is paid to the importance of logging and monitoring for detecting and responding to security incidents.

  • Course Security in C# .NET Development : Training

    Audience Course Security in C# .NET Development

    The course Security in C# .NET Development is intended for C# Developers who want to learn how to protect C# applications against the many security risks.

    Prerequisites Course Security in C# .NET Development

    To participate in this course, knowledge of and experience with C# and the .NET Platform is required.

    Realization Training Security in C# .NET Development

    The course Security in C# .NET Development is a hands-on course. Theory explanation based on demos and presentations is interchanged with practice based on exercises.

    Certificate course Security in C# .NET Development

    After successfully completing the training, attendants will receive a certificate of participation in the course Security in C# .NET Development.

    NET910-Secure-C#.NET-Development

  • Course Security in C# .NET Development : Modules

    Module 1 : Intro Secure Coding

    Module 2 : Broken Access Control

    Module 3 : Cryptographic Failures
    Secure Coding practices
    Never trusting Input
    SQL injection and NoSQL injection
    OS command injection
    Session Fixation
    Cross Site Scripting and CSRF
    Sensitive Data Exposure
    Insecure Deserialization
    Security Misconfiguration
    Using Unsafe Components     		Implement Proper Authentication
    Broken Authentication
    Role Based Access Control (RBAC)
    Implement Use Session Management
    Session Timeout
    Access Control Lists (ACLs)
    Principle of Least Privilege (PoLP)
    URL and API Authorization
    Error Handling
    Regular Security Testing     		Sensitive Data Exposure
    Weak Key Generation
    Insecure Storage of Keys
    Using Outdated Algorithms
    Hardcoding Secrets
    Insufficient Key Management
    Avoid Homegrown Cryptography
    Verify Signatures
    Side-Channel Attacks
    Lack of Forward Secrecy

    Module 4 : Injection Flaws

    Module 5 : Insecure Design

    Module 6 : Misconfiguration Failures
    SQL Injection (SQLi)
    Cross-Site Scripting (XSS)
    Command Injection
    XML Injection
    LDAP Injection
    XPath Injection
    SSI Injection
    Object Injection
    Template Injection
    CRLF Injection     		Inadequate Authentication
    Inadequate Authorization
    Lack of Input Validation
    Excessive Data Exposure
    Insecure Session Management
    Hardcoding Secrets
    Insufficient Logging and Monitoring
    Insecure Data Storage
    Cross-Site Request Forgery
    Improper Error Handling     		Improper Access Control
    Unsecured APIs
    Open Database Ports
    Default Credentials
    Unused or Unnecessary Features
    Weak Password Policies
    Missing Security Updates
    Improper File Permissions
    Insecure Session Management
    Excessive Error Detail

    Module 7 : NuGet Packages

    Module 8 : Authentication Mistakes

    Module 9 : Logging and Monitoring
    Known Vulnerabilities
    Malicious Packages
    License Compliance
    Misconfigured Packages
    Dependency Chains
    Cryptographic Weaknesses
    Data Privacy and Compliance
    Resource Exhaustion
    Insecure Configuration Defaults     		Weak Password Policies
    No Account Lockout Mechanism
    Inadequate Password Storage
    Hardcoding Credentials
    Lack of Multi-Factor Authentication (MFA)
    Insufficient Session Management
    Missing CAPTCHA or Rate Limiting
    Overly Permissive Access Controls
    Improper Handling Forgotten Passwords     		Insufficient Logging
    Lack of Centralized Logging
    Logging Sensitive Information
    Inadequate Log Retention
    Unencrypted Logging
    Insufficient Access Controls
    Failure to Monitor Logs in Real-Time
    No Alerts or Notifications
    Ignoring Anomalous Activity

  • Course Security in C# .NET Development : General

    Read general course information

  • Course Security in C# .NET Development : Reviews

  • Course Security in C# .NET Development : Certificate

More courses in the Security category
Certified Ethical Hacker, Application Security for Android, Application Security for iOS, Data Security for Developers, SSL Certificates, Web Application Security

These companies already made use of our courses:

These companies used our courses:

© SpiralTrain 2024
Algemene Voorwaarden | Privacyreglement | Klachtenprocedure | NRTO-gedragscode | Sitemap