Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications

Improve the security of your ASP.NET (Core or Framework) web applications by scanning both the code you write and the packages you use in those applications. Even better, include those scans in automated build pipelines!
Course info
Rating
(10)
Level
Intermediate
Updated
May 19, 2020
Duration
1h 20m
Table of contents
Description
Course info
Rating
(10)
Level
Intermediate
Updated
May 19, 2020
Duration
1h 20m
Description

Scanning your custom web application code for common vulnerabilities and scanning the packages that your applications reference can improve the security of your ASP.NET (Core and Framework) web applications. In this course, Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications, you will learn foundational knowledge of/gain the ability to add these types of scans both into your development setup, and automated build pipelines. First, you will learn static code analysis and how to get a security-focused static code analyzer to scan your application code. Next, you will discover package vulnerability scanning, which will analyze the packages your application relies on against a database of known vulnerabilities. Finally, you will explore how to incorporate both of these types of scan into automated build pipelines. When you’re finished with this course, you will have the skills and knowledge of security application scanning needed to improve the overall security of your ASP.NET and ASP.NET Core web applications.

About the author
About the author

Full-stack developer, architect using the Microsoft stack and other key tools to create awesome solutions.

More from the author
Effective Logging in ASP.NET Core
Intermediate
2h 26m
Jul 29, 2020
More courses by Erik Dahl
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
[Autogenerated] Hi, everyone. My name's Eric doll and welcome to my course using security analysis tools to protect a sp dot net and SP dinette core applications. I'm a principal architect at Riel Page. Web application is abroad and challenging topic, and one of the easiest things you can do to start improving the security of your own applications is to make sure that you don't fall into common traps by performing scans of your code and the packages your applications use. In this course, we're gonna learn about these different types of scans and the tools we can use to perform them, as well as set them up in our local development environments and add automated build pipelines. Some of the major topics will cover include static code analysis and how it could be applied to our application code package scanning for known vulnerabilities and how those vulnerabilities air catalogued and getting both types of scams and automated build pipelines in Azure Dev ops and get hub. By the end of this course, you'll know how to start scanning your own A s p dot net core and framework Web applications with the tools we discuss before beginning the course you should be familiar with basic development and sp dot net or E s p dot net core and some basic concepts of Dev ops. I hope you'll join me on this journey to learn how to add these security focus scams to your applications with the using security announces tools to protect a sp dot net and sp dot at core applications course here it plural site.