Confronta offerte su Amazon
+ 2,90 € di spedizione
95% positive negli ultimi 12 mesi
& Spedizione GRATUITA
97% positive per tutta la durata
Scarica l'app Kindle gratuita e inizia a leggere immediatamente i libri Kindle sul tuo smartphone, tablet o computer, senza bisogno di un dispositivo Kindle. Maggiori informazioni
Leggi immediatamente sul browser con Kindle per il Web.
Con la fotocamera del cellulare scansiona il codice di seguito e scarica l'app Kindle.
Advanced ASP.NET Core 3 Security: Understanding Hacks, Attacks, and Vulnerabilities to Secure Your Website Copertina flessibile – 30 ottobre 2020
|Nuovo a partire da||Usato da|
"Ti preghiamo di riprovare"
"Ti preghiamo di riprovare"
Opzioni di acquisto e componenti aggiuntivi
Dalla quarta di copertina
Incorporate security best practices into ASP.NET Core. This book covers security-related features available within the framework, explains where these feature may fall short, and delves into security topics rarely covered elsewhere. Get ready to dive deep into ASP.NET Core 3.1 source code, clarifying how particular features work and addressing how to fix problems.
Advanced ASP.NET Core 3 Security is designed to train developers to avoid these problems. Unlike the vast majority of security books that are targeted to network administrators, system administrators, or managers, this book is targeted specifically to ASP.NET developers. Author Scott Norberg begins by teaching developers how ASP.NET Core works behind the scenes by going directly into the framework's source code. Then he talks about how various attacks are performed using the very tools that penetration testers would use to hack into an application. He shows developers how to prevent these attacks. Finally, he covers the concepts developers need to know to do some testing on their own, without the help of a security professional.
What You Will Learn
- Discern which attacks are easy to prevent, and which are more challenging, in the framework
- Dig into ASP.NET Core 3.1 source code to understand how the security services work
- Establish a baseline for understanding how to design more secure software
- Properly apply cryptography in software development
- Take a deep dive into web security concepts
- Validate input in a way that allows legitimate traffic but blocks malicious traffic
- Understand parameterized queries and why they are so important to ASP.NET Core
- Fix issues in a well-implemented solution
- Know how the new logging system in ASP.NET Core falls short of security needs
- Incorporate security into your software development process
Scott Norberg is a web security specialist currently based in the Seattle, Washington area. He has almost 15 years of experience successfully delivering software products in a wide range of roles. As a security consultant, he has experience with many testing tools and techniques, including Dynamic (DAST) and Static (SAST) testing, as well as manual testing and reviewing source code. Along with the many websites he has designed and built with various versions of ASP.NET, he has performed security assessments for many more. While his language of choice is C#, he has also built websites, components, and other tools in F#, VB.NET, Python, R, Java, and Pascal. He holds several certifications, including Microsoft Certified Technology Specialist (MCTS), certifications for ASP.NET and SQL Server, and a Certified Information Systems Security Professional (CISSP) certification. He also has an MBA from Indiana University.
Scott Norberg is a web security specialist with almost 15 years of experience in various technology and programming roles, focusing on developing and securing websites built with ASP.NET. As a security consultant, he specializes on blue team (defensive) techniques such as Dynamic Application Security Testing (DAST), code reviews, and manual penetration testing. He also has an interest in building plug-and-play software libraries that developers can use to secure their sites with little-to-no extra effort. As a developer, Scott has primarily built websites with C# and various versions of ASP.NET, and he has also built several tools and components using F#, VB.NET, Python, R, Java, and Pascal.
Scott holds several certifications, including Microsoft Certified Technology Specialist (MCTS), certifications for ASP.NET and SQL Server, and a Certified Information Systems Security Professional (CISSP) certification. He also has an MBA from Indiana University.
Scott is currently working as a contractor and consultant through his business, Norberg Consulting Group, LLC. You can see his latest ideas and projects at scottnorberg.com.