Securely Handling Errors and Logging Security Events in ASP.NET and ASP.NET Core

Stop giving malicious users details about your application and track security events in such a way that will enable you to analyze and investigate anomalous activity in your ASP.NET and ASP.NET Core applications.
Course info
Rating
(15)
Level
Intermediate
Updated
Dec 11, 2019
Duration
1h 2m
Table of contents
Description
Course info
Rating
(15)
Level
Intermediate
Updated
Dec 11, 2019
Duration
1h 2m
Description

Improper error handling and incomplete logging can have a crippling effect when it comes to the security of your ASP.NET and ASP.NET Core applications. In this course, Securely Handling Errors and Logging Security Events in ASP.NET and ASP.NET Core, you will gain the ability to properly shield and log errors gracefully, as well as effectively log security events. First, you will learn global exception handling and logging. Next, you will discover both what constitutes a security event and what information is important to log with them. Finally, you will explore how to analyze and explore the log entries you've created. When you’re finished with this course, you will have the skills and knowledge of Securely Handling Errors and Logging Security Events in ASP.NET and ASP.NET Core needed to solidify your own applications.

About the author
About the author

Full-stack developer, architect using the Microsoft stack and other key tools to create awesome solutions.

More from the author
Effective Logging in ASP.NET Core
Intermediate
2h 26m
Jul 29, 2020
More courses by Erik Dahl
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hey everyone. My name is Erik Dahl, and welcome to my course, Securely Handling Errors and Logging Security Events in ASP.NET and ASP.NET Core. I'm a principal architect at RealPage. Improperly handling errors in your application can enable hackers to see all kinds of things about your application and can simplify the job of compromising its security, and failing to log various security types of events can leave you blind to the fact that this type of activity is even going on. In this course, we're going to make sure that you can properly handle and log errors without giving away compromising details of your apps and correctly log various security events that can assist in monitoring and investigating security‑related activities. Some of the major topics we'll cover include establishing a global logging framework that can catch, gracefully handle, shield, and log errors; identifying security events that should be logged; reviewing information that should be logged with each entry; and defining ways that you should be able to analyze your log entries. By the end of this course, you'll know how to safeguard your applications with excellent error handling and properly capture security events that will facilitate monitoring and investigation. Before beginning the course, you should be familiar with basic concepts in ASP.NET and ASP.NET Core. I hope you'll join me on this journey to learn how logging can help the security footprint of your applications with the Securely Handling Errors and Logging Security Events course, here at Pluralsight.