.NET Security Workshops

Our experts will cover application profiling, penetration testing techniques, countermeasures and best practices for building secure .NET applications.

.NET security as a long-term solution

To compliment any workshop or reviews, we recommend our secure code analyzer, Puma Scan.

Our software engineers will help install, configure and execute the Puma Scan static code analyzers in Visual Studio, and Azure DevOps build pipelines. Our engineers will review documented Puma Scan rules, insecure coding patterns and secure best practices to remediate .NET vulnerabilities.

What’s Covered

As part of the .NET Workshop, our team will introduce developers to the Puma Scan rules which cover the OWASP Top 10 / CWE vulnerabilities.

Developers will:

• perform code reviews to identify vulnerabilities in .NET C# applications
• learn how to exploit common web application vulnerabilities
• discuss mitigating controls
• apply mitigating controls AND
• retest code

The following Puma Scan rule categories will be discussed:

• Security Misconfiguration
• Cross-Site Scripting
• Insecure Cryptography
• Insecure Deserialization
• Injection
• Password Management
• Validation}
• Access Control
• Secrets Management

Our team can accommodate on-premise workshops or use online collaboration tools to host virtual workshops. Each estimate is customized for our clients’ individual needs.