Hack-proofing Your ASP.NET Web Applications
This course provides the developer with techniques for hack-proofing their applications by understanding the attacks that are used, and how to defend against them.
What you'll learn
Developers are notoriously lax in security. Part of the problem is not understanding how our applications are attacked. To protect your applications you need to BE a hacker. You need to understand how your applications are hacked, and therefore, how to protect them. This course goes over the most common hacking techniques using an array of current attacks to show how a web application is exploited. This course covers exploits and protections for both Web Forms and MVC. Covered are such topics as sql injection, parameter tampering, information leakage, cross-site scripting (xss), cross-site request forgery, encryption, hashing, and denial of service all with applicable demos.
Table of contents
- Introduction 0m
- What is SQL Injection? 4m
- Demo - Form based SQL Injection 1 11m
- Demo - Form based SQL Injection 2 2m
- How do you prevent SQL Injection? 2m
- Demo - SQL Permissions Auditor Tool 2m
- Additional Protections 4m
- Problematic Fixes - Blacklisting Routines 4m
- Problematic Fixes - SQL Routines and SQL Truncation 5m
- Basic Dynamic Query Ideas 6m
- Using an ORM 3m
- Additional Information / References 0m
- Introduction 0m
- What is XSS? 4m
- How is XSS exploited? 1m
- Demo - Reflected XSS Attack 2m
- Demo - Persistent XSS Attack 4m
- Demo - Older Style IE6 Content Type Sniffing Attack 2m
- Demo - DOM Based XSS 7m
- Demo - Data URI - Link Hijack 4m
- Demo - Dangling Markup/Scriptless Attacks 6m
- How do you prevent XSS? 3m
- How do you prevent XSS (page 2) 1m
- Demo (Prevention)- AntiXss GetSafeHtmlFragment() 2m
- Demo (Prevention)- Specifying UTF-8 Encoding 1m
- Demo (Prevention)- Content Security Policy 6m
- Problems with blacklists / character filtering 3m
- How do you prevent XSS (last but not least) 4m
- Don't turn off Request Validation 5m
- Know your encoding options 5m
- Demo (Fix) - Fixing Web Forms Repeater 2m
- Demo (Fix) - Fixing Scriptless / Dangling HTML 1m
- Demo (Fix) - Fixing DOM based attacks 4m
- Tools 2m
- Summary 2m
- Additional Information / References 0m
- Introduction 0m
- What is parameter tampering? 1m
- How is it exploited? 1m
- MVC Parameter Tampering 5m
- Web Forms Parameter Tampering 5m
- EventValidation issues with client side script 1m
- Preventing tampering in MVC 3m
- Preventions - Regular Expressions 1m
- Preventions - Data Annotations 1m
- Validate your data! 3m
- A few minor words of caution 3m
- Summary 3m
- Additional Information / References 1m
- Introduction 0m
- Why should I encrypt? 5m
- How to encrypt - database side 1m
- SQL - Encrypt by passphrase 3m
- SQL - Encrypt by certificate 2m
- How to encrypt - application code 4m
- How to encrypt - configuration settings 3m
- Forcing SSL - MVC 3m
- Forcing SSL - Web Forms 1m
- Forcing SSL - Additional Information 2m
- Installing SSL on your development box 4m
- About Hashing 1m
- How are hashes attacked? 3m
- What's a salt? 1m
- Demo - Basic hash with salt 1m
- Demo - Hash brute force attack (even with a salt!) 3m
- Tool Demo - Hashcat 1m
- Choosing the right approaches 4m
- Membership provider support 2m
- But I need my lost password functionality! 1m
- Additional Information 1m
- Introduction 0m
- What is CSRF? 1m
- How is CSRF exploited? 3m
- Demo - Exploit using email image src 5m
- Demo - Repeatability is the key 1m
- Demo - CSRF from XSS 1m
- POSTs protect me, don't they? 5m
- Demo - Web Forms One Click Attack - Forge user interaction 8m
- How do you prevent CSRF? 2m
- Web Forms CSRF Prevention 5m
- MVC CSRF Prevention 5m
- Summary 2m
- Introduction 0m
- ASP.NET Session Id Management Background 5m
- Session Management Demo 5m
- How can sessions be attacked? 1m
- Demo - stealing a session 6m
- Preventing Session Attacks 1m
- Syncing Forms authentication timeouts and session timeouts 5m
- Preventing - Removing the session cookie on login/logout 3m
- Preventing - Avoid cookieless sessions 1m
- Custom session id managers 9m
- Additional Information 1m
About the author
Adam Tuliper is a software architect with Cegedim and has been developing software for over 16 years. He's a Certified Scrum Master and MCPD Enterprise Applications Developer. Adam started his work in security and reverse engineering (x86 based - pre .NET) with the direction of going into the software protection and anti-piracy field. He has been deeply involved in .NET internals since early .NET beta and currently works extensively with WCF, ASP.NET, SQL Server, MVC, C#, jQuery, and Silverlight... more