C#/.Net

Learn basic secure developing tasks, including input validation, SQL security, and properly handling XML and serialized objects. Additionally, gain knowledge in properly implementing authentication, authorization, and much more!

43 modules | 9 hrs 56 min | 56 experiments | Green Belt Level
Try C#/.Net training modules!

C#/.Net Examples

  • Techniques for .NET
  • Exploring the difference between client and server-side input validation
  • SQL injection
  • Insecure use of XML
  • .NET serializing and deserializing data
  • The concept of XSS
  • Token authentication used for API and more

What's Included?

We created this Green Belt path for developers coding in C#/.NET. It includes our standard 13 Green Belt Secure Development lesson with the addition of 32 C#/.NET lessons. Each of our lessons are short and conclude with a brief ten question assessment. The learning module length is purposeful – they are perfect for filling gaps in a developer’s day while code is deploying.

Secure Development Core Lesson Modules
Intro to Secure Development
Intro to Secure Coding
Secure Coding Best Practices: Part 1
Secure Coding Best Practices: Part 2
Language Typing
Securing the Development Environment
Protecting your Code Repository
Producing a Clean, Maintainable, & Secure Code Culture
Secure the Release
Designing a Secure App or Product
Thinking Like A Penetration Tester
Secure Design Principles in Action: Part 1
Secure Design Principles in Action: Part 2
C#/.Net
Green Belt Path
Syntactic & Semantic Input Validation 
Input Validation with Range Checks, Regex, & Enums​
Web Input Validation: MVC
Web Input Validation: MVC client-side
Web Input Validation: Webforms and Webpages
Parameterization with SQL
Securely Working with SQL​
Safely Working with XML
Avoiding Insecure Serialization & Deserialization​
Encode Output
Authentication: Basic and Windows
Authentication: Forms​
Authentication: Token
Authentication: JWT
Authentication: External authentication​
Authentication: .NET Core Identity
CSRF & Open Redirects
Authorization: Simple, Role-Based, & View-Based
Authorization: Claims & Policy
Authorization: Legacy
Sessions and Cookies
Logging
Error Handling and Exceptions
HTTPS and TLS​
Content Security Policy
Security Headers
Data Protection API
Hashing Passwords
File Uploads
Thread Safety​
Application Secrets Storage
Insecure Coding with C#