Advanced ASP.NET Core 3 Security: Understanding Hacks, Attacks, and Vulnerabilities to Secure Your Website
暫譯: 進階 ASP.NET Core 3 安全性:理解駭客、攻擊與漏洞以保護您的網站

Norberg, Scott

商品描述

Chapter 1 - Introducing ASP.NET Core

Chapter 2 - General Security Concepts

 

Chapter 3 - Cryptography

Chapter 4 - Web Security Concepts

 

Chapter 5 - Understanding Common Attacks

 

Chapter 6 - Processing User Input

Chapter 7 - Authentication and Authorization

Chapter 8 - Data Access and Storage

Chapter 9 - Logging and Error Handling

 

Chapter 10 - Setup and Configuration

Chapter 11 - Secure Application Lifecycle Management

 

商品描述(中文翻譯)

第 1 章 - 介紹 ASP.NET Core

第 2 章 - 一般安全概念

第 3 章 - 密碼學

第 4 章 - 網路安全概念

第 5 章 - 理解常見攻擊

第 6 章 - 處理使用者輸入

第 7 章 - 認證與授權

第 8 章 - 數據存取與儲存

第 9 章 - 日誌記錄與錯誤處理

第 10 章 - 設定與配置

第 11 章 - 安全的應用程式生命週期管理

作者簡介

Scott Norberg is a web security specialist with almost 15 years of experience in various technology and programming roles, focusing on developing and securing websites built with ASP.NET. As a security consultant, he specializes on blue team (defensive) techniques such as Dynamic Application Security Testing (DAST), code reviews, and manual penetration testing. He also has an interest in building plug-and-play software libraries that developers can use to secure their sites with little-to-no extra effort. As a developer, Scott has primarily built websites with C# and various versions of ASP.NET, and he has also built several tools and components using F#, VB.NET, Python, R, Java, and Pascal.

Scott holds several certifications, including Microsoft Certified Technology Specialist (MCTS), certifications for ASP.NET and SQL Server, and a Certified Information Systems Security Professional (CISSP) certification. He also has an MBA from Indiana University.

Scott is currently working as a contractor and consultant through his business, Norberg Consulting Group, LLC. You can see his latest ideas and projects at scottnorberg.com.

 

 

作者簡介(中文翻譯)

Scott Norberg 是一位網路安全專家,擁有近15年的各種技術和程式設計角色經驗,專注於開發和保護使用 ASP.NET 建立的網站。作為一名安全顧問,他專精於藍隊(防禦)技術,例如動態應用程式安全測試(Dynamic Application Security Testing, DAST)、程式碼審查和手動滲透測試。他也對建立即插即用的軟體庫感興趣,這些庫可以讓開發人員以幾乎不需要額外努力的方式來保護他們的網站。作為一名開發人員,Scott 主要使用 C# 和各種版本的 ASP.NET 建立網站,並且他還使用 F#、VB.NET、Python、R、Java 和 Pascal 建立了幾個工具和元件。

Scott 擁有多項認證,包括微軟認證技術專家(Microsoft Certified Technology Specialist, MCTS)、ASP.NET 和 SQL Server 認證,以及資訊系統安全專業人員(Certified Information Systems Security Professional, CISSP)認證。他還擁有印第安納大學的工商管理碩士學位。

Scott 目前透過他的公司 Norberg Consulting Group, LLC 擔任承包商和顧問。您可以在 scottnorberg.com 查看他的最新想法和專案。