Skip to main content

SEC.302 Secure Coding C#

Beginner training for secure software development
Duration: 3 days
Cost: € 2364 plus VAT
Requirements: Experience with C# development
Training Format: Public and in-house training possible

During the Secure Coding for C# training, different C# language features will be introduced that can contribute to the stability of the code and are necessary as a basis for the development of robust code. In addition, cryptographic concepts such as encryption, hashing or digital signatures are discussed. You will learn how to achieve robust session management using meaningful access controls. Classic web attacks such as cross-site scripting and SQL injection are explained and how to protect against them is demonstrated. Finally, we discuss how code reviews and static analyses are performed to achieve optimal code quality. For a better understanding, the topics are explained using practical exercises.

Content of Training

  • Introduction to IT-Security
    • Evolution of Cyber-Attacks
    • Types of Attackers
    • IT-Security 101
  • Cryptography
    • Encryption
    • Hashs
    • Signatures
    • Public-Key Infrastructure and Certificates
    • Transport Layer Security (TLS)
  • Authentication & Authorization (part 1)
    • Authorization concepts
    • Passwords
    • Session management
  • Authentication & Authorization (part 2)
    • Multi-factor authentication
    • Cross-site request forgery
    • Forwards and open redirects
  • Injection Attacks
    • SQL Injections
    • OS Command Injection
    • Cross Site Scripting (XSS)
    • LDAP Injection
  • C# Language Security
    • Data Types
    • Encapsulation
    • Exception Handling
    • Logging
    • Multi-Threading
    • Code Signing
  • Secure Communication
    • Serialization and deserialization
    • WebAPIs
    • GraphQL
  • Revision
    • Code Review
    • Static & Dynamic Analyse
    • Secure Software Development Process

After the training the participants should

  • understand how attacks work and start thinking like an attacker
  • understand why secure software development is important and why to implement it
  • understand what steps are necessary for a secure software development
  • be capable to integrate secure development into their area of responsibility

Upon Request

Are you interested in a SEC.302 Secure Coding C# Training? Contact us!

Request training