SEC.302 Secure Coding C#

Beginner training for secure software development
Duration: 3 days
Cost: € 2364 plus VAT
Requirements: Experience with C# development
Training Format: Public and in-house training possible

During the Secure Coding for C# training, different C# language features will be introduced that can contribute to the stability of the code and are necessary as a basis for the development of robust code. In addition, cryptographic concepts such as encryption, hashing or digital signatures are discussed. You will learn how to achieve robust session management using meaningful access controls. Classic web attacks such as cross-site scripting and SQL injection are explained and how to protect against them is demonstrated. Finally, we discuss how code reviews and static analyses are performed to achieve optimal code quality. For a better understanding, the topics are explained using practical exercises.

Content of Training

  • Introduction to IT-Security
    • Evolution of Cyber-Attacks
    • Types of Attackers
    • IT-Security 101
  • Cryptography
    • Encryption
    • Hashs
    • Signatures
    • Public-Key Infrastructure and Certificates
    • Transport Layer Security (TLS)
  • Authentication & Authorization
    • Passwords
    • Problems with Password-based Authentication
    • Brute-Force-Attacks
  • Authentication & Authorization Part 2
    • Secure Session Management
    • Forwards and Redirects
    • Security-Frameworks
  • Injection Attacks
    • SQL Injections
    • OS Command Injection
    • Cross Site Scripting (XSS)
  • C# Language Security
    • Data Types
    • Encapsulation
    • Exception Handling
    • Logging
    • Multi-Threading
    • Code Signing
  • Secure Communication
    •  XML Injections
    • Windows Communication Foundation
    • Web Apps and TLS/HTTPs
  • Revision
    • Code Review
    • Static & Dynamic Analyse
    • Secure Software Development Process

After the training the participants should

  • understand how attacks work and start thinking like an attacker
  • understand why secure software development is important and why to implement it
  • understand what steps are necessary for a secure software development
  • be capable to integrate secure development into their area of responsibility

Upon Request

Are you interested in a SEC.302 Secure Coding C# Training? Contact us!

Request training