Secure Coding techniques using .NET (SCT)

Institut: ETC - Enterprise Training Center GmbH
Bereich: Technik, EDV, Telekommunikation

Kurs merken

Anmelden

Kursbeschreibung

Gartner reports states that over 70% of security vulnerabilities exist at the application layer. Industry standards including PCI DSS, NIST, FISMA are introducing requirements to comply with security coding guidelines and integrating application scanning into software development life cycle. Microsoft Security Development Lifecycle emphasizes the need of having at least one security training class each year. Such training can help ensure software is created with security and privacy in mind and can also help development teams stay current on security issues and modern security techniques. CQURE Secure Coding Techniques course is prepared by experienced .NET and security consultants, conducting code reviews and consultancies for customers all over the world. We guarantee, that the knowledge being transferred is always up to date and includes latest security guidelines and techniques. During 3-day instructor-led training you will learn and practice all important .NET security features (with special focus on web applications), ways of hacking applications and reviewing the code with security in mind. We will start by talking about security as a process covering most important aspects of latest Microsoft SDL guidance, tools, architecture and design practices. Then we will go through everything that each .NET developer needs to know about secure coding practices with newest tools and services (Visual Studio 2017, TFS 2018 or Azure DevOps). We will spend most of our time talking about securing ASP.NET applications and issues frequently observed. You will learn about OWASP TOP 10 most critical web application security vulnerabilities, see them in practice (in ASP.NET) and mitigate the risks. We will see how to hack web applications by using various techniques and learn how to prevent those risks. You will learn about the latest version of ASP.NET Identity modern framework for securing ASP.NET applications. We will cover fundamentals of ASP.NET Web API and see modern ways of protecting them by OAUTH 2, OpenID and claims-based authentication. At the end you will see how to put all the knowledge in practice to conduct code reviews. After finishing the course, attendees will be up-to date with the latest security techniques used in .NET applications and will be able to conduct .NET application code reviews by themselves.

Gartner reports states that over 70% of security vulnerabilities exist at the application layer. Industry standards including PCI DSS, NIST, FISMA are introducing requirements to comply with security coding guidelines and integrating application scanning into software development life cycle. Microsoft Security Development Lifecycle emphasizes the need of having at least one security training class each year. Such training can help ensure software is created with security and privacy in mind and can also help development teams stay current on security issues and modern security techniques. CQURE Secure Coding Techniques course is prepared by experienced .NET and security consultants, conducting code reviews and consultancies for customers all over the world. We guarantee, that the knowledge being transferred is always up to date and includes latest security guidelines and techniques. During 3-day instructor-led training you will learn and practice all important .NET security features (with special focus on web applications), ways of hacking applications and reviewing the code with security in mind. We will start by talking about security as a process – covering most important aspects of latest Microsoft SDL guidance, tools, architecture and design practices. Then we will go through everything that each .NET developer needs to know about secure coding practices with newest tools and services (Visual Studio 2017, TFS 2018 or Azure DevOps). We will spend most of our time talking about securing ASP.NET applications and issues frequently observed. You will learn about OWASP TOP 10 – most critical web application security vulnerabilities, see them in practice (in ASP.NET) and mitigate the risks. We will see how to hack web applications by using various techniques and …

mehrweniger lesen

Wann & Wo

Beginn

29.01.2025

Ende

31.01.2025

Uhrzeit

ca 09:00 - 16:00 Uhr

Dauer

21.0 LE

Ort

ETC-Wien

Weitere Termine Tabelle
Weitere Termine	Standort	Kosten
25.11.2024 - 27.11.2024 (zum Kurs)	ETC-Wien	€ 2.650 exkl. 20% MwSt
25.11.2025 - 27.11.2025 (zum Kurs)	ETC-Wien	€ 2.650 exkl. 20% MwSt

Kontakt

E-Mail

info@etc.at

Kontakt

Mathias Leiner

Ort

ETC - Enterprise Training Center

Straße

Modecenterstrasse 22/Office 4

PLZ

1030

Ort

Wien

Land

Österreich

Bundesland

Wien

Tel

+431533 17 77-99

Fax

+431533 17 77-85

Voraussetzungen

- To attend this training, you should have a good hands-on experience in administering Windows infrastructure. - At least 8 years in the field is recommended.

Ziele

Zielgruppe

- Enterprise administrators - infrastructure architects - security professionals - systems engineers - network administrators - IT professionals - security consultants and other people responsible for implementing network and perimeter security.

Kosten

€ 2.650
exkl. 20% MwSt

Weitere Daten

Kursnummer

SCT