Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications

Improve the security of your ASP.NET (Core or Framework) web applications by scanning both the code you write and the packages you use in those applications. Even better, include those scans in automated build pipelines!
Course info
Rating
(12)
Level
Intermediate
Updated
May 19, 2020
Duration
1h 20m
Table of contents
Description
Course info
Rating
(12)
Level
Intermediate
Updated
May 19, 2020
Duration
1h 20m
Description

Scanning your custom web application code for common vulnerabilities and scanning the packages that your applications reference can improve the security of your ASP.NET (Core and Framework) web applications. In this course, Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications, you will learn foundational knowledge of/gain the ability to add these types of scans both into your development setup, and automated build pipelines. First, you will learn static code analysis and how to get a security-focused static code analyzer to scan your application code. Next, you will discover package vulnerability scanning, which will analyze the packages your application relies on against a database of known vulnerabilities. Finally, you will explore how to incorporate both of these types of scan into automated build pipelines. When you’re finished with this course, you will have the skills and knowledge of security application scanning needed to improve the overall security of your ASP.NET and ASP.NET Core web applications.

About the author
About the author

Full-stack developer, architect using the Microsoft stack and other key tools to create awesome solutions.

More from the author
Effective Logging in ASP.NET Core
Intermediate
2h 26m
Jul 29, 2020
More courses by Erik Dahl
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
[Autogenerated] Hi, everyone. My name is Eric Doll on. Welcome to my course using security analysis tools to protect a SP .NET and SB .NET core applications. I'm a principal architect at real page web Application is abroad and challenging topic, and one of the easiest things you could do to start improving the security of your own applications is to make sure that you don't fall into common traps by performing scans of your code, and the package is your applications use. In this course, we're gonna learn about these different types of scans and the tools we can use to perform them, as well as set them up in our local development environments and add automated build pipelines. Some of the major topics will cover include static code analysis and how it could be applied to our application code package scanning for known vulnerabilities and how those vulnerabilities are cataloged and getting both types of scams in to automated build pipelines and Azure, DevOps and GitHub. By the end of this course, you'll know how to start scanning your own ASP.NET core and framework web applications with the tools we discuss before beginning the course. You should be familiar with basic development and S p .NET or a SP .NET core and some basic concepts of DevOps. I hope you'll join me on this journey to learn how to add the security. Focus scans to your applications with the using security analysis tools to protect ASP.NET and ASP.NET core applications. Course here at Pluralsight. Yeah.