logo


your one source for IT & AV

Training Presentation Systems Services & Consulting Cloud Services Purchase Client Center Computer Museum
Arrow Course Schedule | Classroom Rentals | Student Information | Free Seminars | Client Feedback | Partners | Survey | Standby Discounts

.Net Secure Coding Camp | Attacking and Securing .Net Web Apps (for .Net Core 6)

SS Course: 9000485

Course Overview

TOP

Attacking and Securing .Net Web Applications is a lab-intensive, hands-on .Net security training course that provides unique coverage of .Net application security. In this course, students begin with penetration testing, hunting for bugs in .Net web applications. They then thoroughly examine best practices for defensively coding web applications, covering all the OWASP Top Ten as well as several additional prominent vulnerabilities (such as file uploads, CSRF and direct object references).  Students will repeatedly attack and then defend various assets associated with fully functional web applications and services.  This hands-on approach drives home the mechanics of how to secure .Net web applications in the most practical of terms.  The course ends with an extensive discussion of what a mature application security presence would provide to the developers within an organization.

Please note this class uses the latest version of .Net Core / Version 6.

                                                                  

Scheduled Classes

TOP
08/25/25 - TTV - Virtual-Instructor Led - Virtual-Instructor Led (click to enroll)
10/27/25 - TTV - Virtual-Instructor Led - Virtual-Instructor Led (click to enroll)
12/08/25 - TTV - Virtual-Instructor Led - Virtual-Instructor Led (click to enroll)

What You'll Learn

TOP

Working in a dynamic, lab-intensive hands-on coding environment students will learn to:

  • Ensure that any hacking and bug hunting is performed in a safe and appropriate manner
  • Identify defect/bug reporting mechanisms within their organizations
  • Work with specific tools for targeted vulnerabilities
  • Avoid common mistakes that are made in bug hunting and vulnerability testing
  • Understand the concepts and terminology behind defensive, secure coding including the phases and goals of a typical exploit
  • Develop an appreciation for the need and value of a multilayered defense in depth
  • Understand potential sources for untrusted data
  • Understand the consequences for not properly handling untrusted data such as denial of service, cross-site scripting, and injections
  • To test web applications with various attack techniques to determine the existence of and effectiveness of layered defenses
  • Prevent and defend the many potential vulnerabilities associated with untrusted data
  • Understand the vulnerabilities of associated with authentication and authorization
  • Detect, attack, and implement defenses for authentication and authorization functionality and services
  • Understand the dangers and mechanisms behind Cross-Site Scripting (XSS) and Injection attacks
  • Detect, attack, and implement defenses against XSS and Injection attacks
  • Understand the risks associated with XML processing, file uploads, and server-side interpreters and how to best eliminate or  mitigate those risks
  • Understand techniques and measures that can used to harden web and application servers as well as other components in your infrastructure

Outline

TOP

Prerequisites

TOP

Familiarity with C# is required and real world programming experience is highly recommended.  Ideally students should have approximately 6 months to a year of .Net development practical experience.

    Who Should Attend

    TOP

    This is an intermediate -level .Net secure programming course, designed for experienced .Net developers who wish to get up and running on developing well defended software applications.  

    Next Step Courses

    TOP

    Below are a few of the popular Related Courses we offer in this space. Please see the complete Course Catalog for additional options and titles:

    • Securing Web Applications | 2021 OWASP Top Ten and Beyond (Language Neutral)

    Explore Common Web Application Vulnerabilities, How to Implement and Test Attack Defenses & More

    • Web Application Security Refresher

    Web Application Security

    • Securing ASP.Net Web Services | Web Services Security in .Net

    Essential Skills for Enterprise Developers who Need to Produce Secure .Net Based Web Services

    • Secure Software Design

    Security Training Series

    • Securing Databases | Database Security

    Learn to Attack and Defend Assets Critical Database Assets, and How to Build Secure Databases from the Ground Up