Using Security Analysis Tools to Protect ASP.NET 3 and ASP.NET Core 3 Applications
Improve the security of your ASP.NET (Core or Framework) web applications by scanning both the code you write and the packages you use in those applications. Even better, include those scans in automated build pipelines!
Scanning your custom web application code for common vulnerabilities and scanning the packages that your applications reference can improve the security of your ASP.NET (Core and Framework) web applications. In this course, Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications, you will learn foundational knowledge of/gain the ability to add these types of scans both into your development setup, and automated build pipelines. First, you will learn static code analysis and how to get a security-focused static code analyzer to scan your application code. Next, you will discover package vulnerability scanning, which will analyze the packages your application relies on against a database of known vulnerabilities. Finally, you will explore how to incorporate both of these types of scan into automated build pipelines. When you’re finished with this course, you will have the skills and knowledge of security application scanning needed to improve the overall security of your ASP.NET and ASP.NET Core web applications.
Author Name: Erik Dahl
Author Description:
Erik Dahl has been developing software and architecture for 20+ years, mostly doing in-house development for his employers. His recent work has included a multi-tenant B2B implementation and self-registration B2C implementation for Duende IdentityServer, upgrading legacy ASP.NET websites from server-side technologies to a client/server mix and adopting TypeScript, building Web APIs as the back end for mobile and web applications, and finding ways to modernize existing applications and make them … more
Table of Contents
- Course Overview
1min - Applying Static Code Analysis (SCA)
21mins - Detecting Vulnerable Libraries
24mins - Adding SCA and Vulnerable Library Detection to Build Pipelines
33mins
There are no reviews yet.