Microsoft & .NET Training / ASP.NET Training
.NET Web Application Security
Accelebrate's .NET Web Application Security training course teaches students the fundamentals of web application security by allowing them to play the role of a malicious user. As this user, they perform a variety of tasks involving application profiling and penetration testing. After that, students learn about the countermeasures and best practices necessary for building secure .NET web applications.
Location and Pricing
Most Accelebrate courses are delivered as private, customized, on-site training at our clients' locations worldwide for groups of 3 or more attendees and are custom tailored to their specific needs. Please visit our client list to see organizations for whom we have delivered private in-house training. These courses can also be delivered as live, private online classes for groups that are geographically dispersed or wish to save on the instructor's or students' travel expenses. To receive a customized proposal and price quote for private training at your site or online, please contact us.
In addition, some courses are available as live, online classes for individuals. See a schedule of online courses.
.NET Security Training Objectives
.NET Security Training Outline
Business Impacts of a Cyberattack
Web Application Weak Spots
Review of HTTP
Web Debugging Proxies
OWASP Top Ten
Current Top Ten List
Footprinting, Scanning, and Fingerprinting
Cryptographic Hash Functions
Keyed-Hash Message Authentication Codes (HMAC)
SSL, TLS, and HTTPS
Two Factor Authentication
IIS Anonymous Authentication
HTTP Basic Authentication
HTTP Digest Authentication
Client Certificate Authentication
Pre-Shared Key Authentication
Visual Studio Templates
Cross-Site Scripting (XSS)
Direct Object References
Sensitive Data Exposure
Function Level Access Control
Cross-Site Request Forgery (CSRF)
Validating Redirects and Forwards
Reducing Attack Surface Area
Configuring for Least Privilege
ISAPI and CGI
IP Address and Domain Restrictions
Prior ASP.NET development experience is required. Experience with ASP.NET MVC and Web API is helpful but not required.
All students receive a comprehensive lab manual and a related textbook.
Software needed for each student PC: