Learn basic secure developing tasks, including input validation, SQL security, and properly handling XML and serialized objects. Additionally, gain knowledge in properly implementing authentication, authorization, and much more!

43 modules | 9 hrs 56 min | 56 experiments | Green Belt Level
Try C#/.Net training modules!

C#/.Net Examples

  • Techniques for .NET
  • Exploring the difference between client and server-side input validation
  • SQL injection
  • Insecure use of XML
  • .NET serializing and deserializing data
  • The concept of XSS
  • Token authentication used for API and more

What's Included?

We created this Green Belt path for developers coding in C#/.NET. It includes our standard 13 Green Belt Secure Development lesson with the addition of 32 C#/.NET lessons. Each of our lessons are short and conclude with a brief ten question assessment. The learning module length is purposeful – they are perfect for filling gaps in a developer’s day while code is deploying.

Secure Development Core Lesson Modules
Intro to Secure Development
Intro to Secure Coding
Secure Coding Best Practices: Part 1
Secure Coding Best Practices: Part 2
Language Typing
Securing the Development Environment
Protecting your Code Repository
Producing a Clean, Maintainable, & Secure Code Culture
Secure the Release
Designing a Secure App or Product
Thinking Like A Penetration Tester
Secure Design Principles in Action: Part 1
Secure Design Principles in Action: Part 2
Green Belt Path
Syntactic & Semantic Input Validation 
Input Validation with Range Checks, Regex, & Enums​
Web Input Validation: MVC
Web Input Validation: MVC client-side
Web Input Validation: Webforms and Webpages
Parameterization with SQL
Securely Working with SQL​
Safely Working with XML
Avoiding Insecure Serialization & Deserialization​
Encode Output
Authentication: Basic and Windows
Authentication: Forms​
Authentication: Token
Authentication: JWT
Authentication: External authentication​
Authentication: .NET Core Identity
CSRF & Open Redirects
Authorization: Simple, Role-Based, & View-Based
Authorization: Claims & Policy
Authorization: Legacy
Sessions and Cookies
Error Handling and Exceptions
Content Security Policy
Security Headers
Data Protection API
Hashing Passwords
File Uploads
Thread Safety​
Application Secrets Storage
Insecure Coding with C#