OWASP Top 10 Web Application Security Risks for ASP.NET

By Troy Hunt

This course introduces the OWASP Top 10 Most Critical Web Application Security Risks including how to demonstrate and mitigate them in ASP.NET.

Start free trial now

Course info

Rating

(998)

Level

Intermediate

Updated

April 30, 2013

Duration

8h 6m

Table of contents

Introduction

17m 15s

Injection

49m 29s

Cross Site Scripting (XSS)

59m 20s

Broken Authentication and Session Management

28m 10s

Insecure Direct Object References

35m 44s

Cross Site Request Forgery (CSRF)

38m 19s

Security Misconfiguration

47m 48s

Insecure Cryptographic Storage

1h 5m

Failure to Restrict URL Access

42m 0s

Insufficient Transport Layer Protection

1h 12m

Unvalidated Redirects and Forwards

30m 49s

Description

Course info

Rating

(998)

Level

Intermediate

Updated

April 30, 2013

Duration

8h 6m

Description

Web applications today are being hacked with alarming regularity by hacktivists, online criminals and nation states. Very frequently, it is the same prevalent security risks being exploited which is why the Open Web Application Security Project (OWASP) developed their list of Top 10 Most Critical Web Application Security Risks to help developers build more secure software. This course helps developers apply the Top 10 in ASP.NET using both web forms and MVC by walking through an overview of the risk, demonstrating how it can be exploited in .NET and then delving into the various approaches available to mitigate it by applying security in depth.

About the author

Troy Hunt

About the author

Troy is a Software Architect, Microsoft MVP for Developer Security and ASPInsider. He's a regular conference speaker, frequent blogger at troyhunt.com and is the author of the OWASP Top 10 for .NET developers series and the free eBook of the same name.