Securing ASP.Net Web Applications - OWASP Top 10

This course guides the participant through the top ten security vulnerabilities of ASP.Net websites.Using the OWASP project top ten list, this course explains the vulnerability, provides samples of the flaw, provides solutions to protect the application, and provides tests to check site security.

This course involves hand-on demonstrations of each potential vulnerability.

This course satisfies PCI Data Security Standard Requirements for custom software developer training.

Prerequisites: Students should be experienced ASP.Net developers.  Note, this class is delivered using C#.  Students may use VB.Net if desired.

Length: 2 days

Cost: Contact Us for a quote

Public Training Schedule
Outline:

• Overview of the OWASP Project
• Top Ten
• Cross Site Scripting
• Injection Flaws
• Malicious File Execution
• Insecure Direct Object Reference
• Cross Site Request Forgery
• Information Leakage and Improper Error Handling
• Broken Authentication and Session Management
• Insecure Cryptographic Storage
• Insecure Communications
• Failure to Restrict URL Access
• Conclusion

Contact us now to schedule or attend a public course

© 2008 McCullough & Associates. All Rights Reserved.