DEV544: Secure Coding in .NET: Developing Defensible Applications

Course Code: IT 516

5 Course Visits

Course Sector:

Information Technology

Request in house training Call Me Back

Course Dates and Locations

Choose a date and location to book your seat

No.

Date

Days

Location

Fees

Enrollment

11 - 15 Aug 2025

5 Days

Riyadh, KSA

$4,250

13 - 17 Oct 2025

5 Days

Online, Virtual

$2,150

Introduction

Training course introducion / brief

this Course Provide web developers with tools that allow them an unprecedented degree of flexibility and productivity. On the other hand, these sophisticated tools make it easier than ever to miss the little details that allow security

Use a web application proxy to view HTTP requests and responses.
Review and perform basic exploits of common .NET web application vulnerabilities
Mitigate common web application vulnerabilities using industry best practices in the .NET framework
Understand built in ASP .NET security mechanisms
Apply industry best practices (NIST, PCI) for cryptography and hashing in the .NET framework.
Implementing a secure software development lifecycle (SDLC) to include threat modeling, static analysis, and dynamic analysis

Soon

Data Validation:

Web Application Attacks
Web Application Proxies
Parameter Manipulation
Cross Site Scripting (XSS)
Open Redirect
Unvalidated Forwards
SQL Injection
HTTP Response Splitting

Data Validation:

Input Validation
Indirect Selection
Blacklists
Whitelists
Regular Expressions
Event Validation
Character Encoding
Command Encoding
Content Security Policy
LINQ & Entity Framework

DEV544.2: Authentication & Session Management:

Authentication Factors
Authentication Attacks
Authorization Attacks
Password Management
ASP.NET Identity
Forms
Authentication & Membership Provider
Race Conditions
Session Identifiers
Man in the middle (MITM) Attacks
Cross-Site Request Forgery (CSRF)
Clickjacking
Session Hijacking
Session Fixation
Session Management
Cookie Security

Net Framework Security:

Cryptography
Password Storage
PCI Compliance
Threading
String Immutability
Numeric Overflow
Risks of Malicious Code
Exception Handling
Auditing and Logging
Web Services

Secure Software Development Cycle:

Security
Requirements
Secure Design
Threat Modeling
Implementation
Static Analysis
Roslyn Diagnostic Analyzers
Peer Reviews
Secure Code Review
Verification
Dynamic Analysis
Penetration Test Reports
Release
Response

Boost certificate of completion

BOOST's Professional Attendance Certificate “BPAC” is always given to the delegates after completing the training course, and depends on their attendance of the program at a rate of no less than 80%, besides their active participation and engagement during the program sessions.

ENDORSED EDUCATION PROVIDER

Flexible deadlines

Customized dates accordance to your schedule

Shareable Certificate

Earn certificate upon completion

COURSE METHODOLOGY

Our Training programs are implemented by combining the participants' academic knowledge and practical practice (30% theoretical / 70% practical activities).

At The end of the training program, Participants are involved in practical workshop to show their skills in applying what they were trained for. A detailed report is submitted to each participant and the training department in the organization on the results of the participant's performance and the return on training. Our programs focus on exercises, case studies, and individual and group presentations.

Download Company profile

Download Calendar

Trending Courses

The most bespoke and flexible training courses

Open courses table

May

- 05 -
Days

Professional in Business Analysis (PMI-PBA Exam Preparation)

Jeddah, KSA

TRAINING COURSE: DEV544: Secure Coding in .NET: Developing Defensible Applications