Course Catalog / Learning Path / .NET Developer

.NET Developer

Overview

The .NET learning path includes a variety of security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed to provide a solid foundation of .NET security features for building secure web applications, sophisticated desktop applications, or modern mobile applications.

Security concepts covered include:

  • Code Access Security (CAS)
  • .NET cryptographic technologies
  • Secure coding best practices

More advanced courses offer platform and language specific secure coding best practices including ASP.NET, AJAX, C# and Windows.

Core

  • AWA 101 Fundamentals of Application Security
  • AWA 102 Secure Software Concepts
  • COD 102-108 Fundamentals of SDLC Security Series (7)
  • COD 153 Fundamentals of Secure AJAX Code
  • COD 261 Threats to Scripts
  • COD 262 Fundamentals of Shell and Interpreted Language Security
  • ENG 205 Fundamentals of Threat Modeling

Advanced

  • COD 216-217 Creating Secure Code .NET Framework Foundations Series (2)
  • COD 251 Creating Secure AJAX Code – ASP.NET Foundations
  • COD 255 Creating Secure Code – Web API Foundations
  • COD 311 Creating Secure Code ASP.NET MVC Applications
  • COD 321-323 Protecting C# Code Series (3)
  • DES 202-205 Fundamentals of Crypto Series (4)
  • DES 222-231 Applying OWASP 2017: Mitigation Series (10)

Elite

  • DES 101 Fundamentals of Secure Architecture
  • DES 212 Architecture Risk Analysis and Remediation
  • DES 311 Creating Secure Application Architecture
  • ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
  • ENG 211 How to Create Application Security Design Requirements
  • ENG 311 Attack Surface Analysis & Reduction
  • ENG 312 How to Perform a Security Code Review
Ready to Demo? Questions about learning paths? Contact Us!

Learning Path Details

Number of Courses: 49

Total Duration: 25 hours

Total CPE Credits: 30

The Courses

View All Courses     Download Learning Path Catalog     Download Course Catalog

COD 309 – ASP.NET MVC Authentication and Authorization (Coming Soon)

45 Minutes

COD 308 – Common ASP.NET MVC Vulnerabilities and Attacks (Coming Soon)

45 Minutes

COD 266 – Secure Ruby Scripting (NEW)

15 Minutes

COD 265 – Secure Python Scripting (NEW)

15 Minutes

COD 108 – Software Operations and Maintenance (NEW)

10 Minutes

COD 107 – Secure Software Deployment (NEW)

10 Minutes

COD 106 – The Importance of Software Integration and Testing (NEW)

15 Minutes

COD 105 – Secure Software Development (NEW)

20 Minutes

COD 104 – Designing Secure Software (NEW)

15 Minutes

COD 103 – Creating Software Security Requirements (NEW)

10 Minutes

COD 102 – The Role of Software Security (NEW)

10 Minutes

Protecting Sensitive Data while Scripting

30 Minutes
Advanced

ENG 312 – How to Perform a Security Code Review

60 Minutes
Elite

ENG 311 – Attack Surface Analysis & Reduction

60 Minutes
Elite

ENG 211 – How to Create Application Security Design Requirements

60 Minutes
Advanced

ENG 205 – Fundamentals of Threat Modeling

60 Minutes
Advanced

ENG 195 – Implementing the Microsoft SDL Threat Modeling Tool

20 Minutes
Core

ENG 194 – Implementing Microsoft SDL Line of Business

20 Minutes
Core

ENG 193 – Implementing the Microsoft SDL Optimization Model

25 Minutes
Core

ENG 192- Implementing the Agile Microsoft SDL

20 Minutes
Core

DES 311 – Creating Secure Application Architecture

120 Minutes
Advanced

DES 231 – Applying OWASP 2017: Mitigating Insufficient Logging & Monitoring Vulnerabilities

12 Minutes
Advanced

DES 230 – Applying OWASP 2017: Mitigating Use of Components with Known Vulnerabilities

12 Minutes
Advanced

DES 229 – Applying OWASP 2017: Mitigating Insecure Deserialization

12 Minutes
Advanced

DES 226 – Applying OWASP 2017: Mitigating Broken Access Control

12 Minutes
Advanced

DES 225 – Applying OWASP 2017: Mitigating XML External Entities

12 Minutes
Advanced

DES 224 – Applying OWASP 2017: Mitigating Sensitive Data Exposure

12 Minutes
Advanced

DES 223 – Applying OWASP 2017: Mitigating Broken Authentication

12 Minutes
Advanced

DES 222 – Applying OWASP 2017: Mitigating Injection

12 Minutes
Advanced

DES 212 – Architecture Risk Analysis & Remediation

60 Minutes
Advanced

DES 205 – Message Integrity Cryptographic Functions

45 Minutes
Advanced

DES 204 – Role of Cryptography in Application Development

15 Minutes
Advanced

DES 203 – Cryptographic Components: Randomness, Algorithms, and Key Management

15 Minutes
Advanced

DES 202 – Cryptographic Suite Services: Encoding, Encrypting & Hashing

45 Minutes

DES 101 – Fundamentals of Secure Architecture

60 Minutes
Core

COD 322 – Protecting C# from SQL & XML Injection

35 Minutes
Elite

COD 321 – Protecting C# from Integer Overflows & Canonicalization

30 Minutes
Elite

COD 311 – Creating Secure Code ASP.NET MVC Applications

90 Minutes
Elite

COD 264 – Secure Perl Scripting (NEW)

15 Minutes
Advanced

COD 261 – Threats to Scripts (NEW)

30 Minutes
Advanced

COD 259 – Node.js Threats & Vulnerabilities

30 Minutes
Advanced

COD 255 – Creating Secure Code: Web API Foundations

120 Minutes
Advanced

COD 251 – Creating Secure AJAX Code: ASP.NET Foundations (Update Coming Soon)

90 Minutes
Advanced

COD 217 – Mitigating .NET Security Threats

50 Minutes
Advanced

COD 216 – Leveraging .NET Framework Code Access Security (CAS)

30 Minutes
Advanced

COD 153 – Fundamentals of Secure Ajax Code (Update Coming Soon)

35 Minutes
Core

COD 101 – Fundamentals of Secure Development

60 Minutes
Core

AWA 102 – Secure Software Concepts

30 Minutes
Core

AWA 101 – Fundamentals of Application Security (UPDATED)

30 Minutes
Core