OWASP Top 10, C# Secure Coding Follow Up Training in Malta

  • Learn via: Classroom
  • Duration: 1 Day
  • Price: Please contact for booking options
We can host this training at your preferred location. Contact us!

This course is the next step for our participants, who completed our OWASP Top 10, C# Secure Coding Fundamentals course. This is a follow up training, meaning that in order to attend this, everyone must already have the knowledge that is covered in the Fundamentals.

This course enables our participants to gain a deeper knowledge in the field, because here we emphasize the C#-specific aspects of secure coding instead of the general vulnerabilities.

At the end of the training everyone has the possibility to take an exam, where they are able to measure their level of the gained knowledge.

  • Learn client-side vulnerabilities and secure coding practices
  • Learn to use various security features of the .NET development environment
  • Have a practical understanding of cryptography

  • Client-side security
  • .NET security architecture and services
  • Practical cryptography



Client-side security

  • JavaScript security
  • Same Origin Policy
  • Simple requests
  • Preflight requests
  • Clickjacking
    • Clickjacking
    • Exercise – IFrame, Where is My Car?
    • Protection against Clickjacking
    • Anti frame-busting – dismissing protection scripts
    • Protection against busting frame busting
  • AJAX security
    • XSS in AJAX
    • Script injection attack in AJAX
    • Exercise – XSS in AJAX
    • XSS protection in AJAX
    • Exercise CSRF in AJAX – JavaScript hijacking
    • CSRF protection in AJAX

.NET security architecture and services

  • .NET architecture
  • Code Access Security (optional)
    • Full and partial trust
    • Evidence classes
    • Permissions
    • Code access permission classes
    • Deriving permissions from evidence
    • Defining custom permissions
    • .NET runtime permission checking
    • The Stack Walk
    • Effects of Assert()
    • Class and method-level declarative permission
    • Imperative (programmatic) permission checking
    • Exercise – sandboxing .NET code
    • Using transparency attributes
    • Allow partially trusted callers
    • Exercise – using transparency attributes

Practical cryptography

  • Rule #1 of implementing cryptography
  • Cryptosystems
    • Elements of a cryptosystem
    • .NET cryptographic architecture
  • Symmetric-key cryptography
    • Providing confidentiality with symmetric cryptography
    • Symmetric encryption algorithms
    • Modes of operation
    • Encrypting and decrypting (symmetric)
  • Other cryptographic algorithms
    • Hash or message digest
    • Hash algorithms
    • SHAttered
    • Hashing
    • Message Authentication Code (MAC)
    • Providing integrity and authenticity with a symmetric key
    • Random number generation
      • Random numbers and cryptography
      • Cryptographically-strong PRNGs
      • Weak PRNGs in .NET
      • Strong PRNGS in .NET
      • Hardware-based TRNGs
  • Asymmetric (public-key) cryptography
    • Providing confidentiality with public-key encryption
    • Rule of thumb – possession of private key
    • The RSA algorithm
      • Introduction to RSA algorithm
      • Encrypting with RSA
      • Combining symmetric and asymmetric algorithms
      • Digital signing with RSA
      • Asymmetric algorithms in .NET
      • Exercise Sign
      • Exercise – using .NET cryptographic classes
  • Public Key Infrastructure (PKI)
    • Man-in-the-Middle (MitM) attack
    • Digital certificates against MitM attack
    • Certificate Authorities in Public Key Infrastructure
    • X.509 digital certificate
Contact us for more detail about our trainings and for all other enquiries!

Blog posts related to OWASP Top 10, C# Secure Coding Follow Up Training in Malta

SECURE CODING BEST PRACTICES

In this blog post, we are sharing several best practices that developers can follow to ensure that their code is secure. Start reading to learn more about secure coding.

Upcoming Trainings

Join our public courses in our Malta facilities. Private class trainings will be organized at the location of your preference, according to your schedule.

Classroom / Virtual Classroom
04 July 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
07 July 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
19 July 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
09 August 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
08 August 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
19 August 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
23 August 2024
Birkirkara, Qormi, Mosta
1 Day
Classroom / Virtual Classroom
24 August 2024
Birkirkara, Qormi, Mosta
1 Day
OWASP Top 10, C# Secure Coding Follow Up Training Course in Malta

Officially known as the Republic of Malta, is an island country in the Mediterranean Sea, South of Sicily. While Malta being the world's tenth smallest country in area and fourth most densely populated sovereign country, the capital city of the island country is Valletta. Malta consists of three islands: Malta, Gozo, and Comino and Malta is the largest island among all. The official languages of Malta are Maltese and English and based on the data from 2019, the population is about 514,564.

Winter season in Malta is delightfully mild, with temperatures above 12 degrees, so it makes the Maltese Islands a perfect year-round destination. But tourists usually prefer traveling to Malta either in April, May or June. Since in those months, Malta is warm without being too hot. In the early Spring season, travelers may also enjoy the glorious wildflower season.

Enhance your IT skills with our comprehensive array of courses, spanning programming, software development, data science, and project management. Benefit from the convenience of choosing your preferred location in Malta as our experienced instructors deliver interactive training and real-world insights.

Bilginç IT Academy All Rights Reserved

By using this website you agree to let us use cookies. For further information about our use of cookies, check out our Cookie Policy.