1. OWASP illustrates that developers keep making the same mistakes over and over again, but what about more esoteric vulnerabilities? In this session Barry will take you beyond SQL injection covering some of the code behind now fixed ASP.NET vulnerabilities. By the end of the session you should be poring through your own code looking for problems with dictionaries, compression, encryption and more.

    # vimeo.com/131642364 Uploaded 375 Plays 1 Comment
  2. Join Carl and Richard from .NET Rocks with panelists Andre Klingsheim, Barry Dorrans, Troy Hunt and Niall Merrigan as they discuss the state of application security today. What are the simple things that developers should be doing to make their applications more secure? How much of security is a development responsibility versus operations? How do you effectively test the security of your application, and how often do you need to test it again? Bring your questions and be part of this .NET Rocks episode!

    # vimeo.com/131640203 Uploaded 525 Plays 0 Comments
  3. Modern browsers offer multiple opt-in security features that help protect your web application. These features are enabled through a variety of HTTP response headers. You should take advantage of these security headers in your web applications to prevent several common web application attacks.

    We'll go through the list of security headers and see what they do to improve security for your users.Security headers are the low hanging fruits of web application security. We should all be using them!

    This talk is relevant for web developers, testers and architects on all platforms. The security headers enable security features in the browser, and so is not tied to any particular web application development stack. Any examples will be shown using the NWebsec security library for ASP.NET.

    # vimeo.com/131641011 Uploaded 456 Plays 0 Comments
  4. Kali, Backbox, Metasploit, BeEF. All tools in an arsenal that exist to break through security barriers.

    This talk introduces the tools available and shows how they are used to get through your defences.

    It is more a massive demo than a talk and is an exploration of the tools and what they do. At end of this talk, you will have better understanding how to defend against them and spot the problems. We will go through recon, exploitation and maintenance of exploits.

    This is geared at developers, it pros and those with an interest in learning more about security tools and practices

    # vimeo.com/131641274 Uploaded 605 Plays 0 Comments
  5. The OWASP Top 10 provides a list of the 10 most critical web application security risks. How do these relate to AngularJS applications? What security vulnerabilities should developers be aware of beyond XSS and CSRF?

    This session will review the OWASP Top 10 with a front-end development focus on HTML and JavaScript. It will look at patterns to implement and others to consider avoiding. We will also explore several built-in features of AngularJS that help secure your application.

    # vimeo.com/131757758 Uploaded 2,628 Plays 2 Comments

Software Security

Samuel Sánchez

Browse This Channel

Shout Box

Heads up: the shoutbox will be retiring soon. It’s tired of working, and can’t wait to relax. You can still send a message to the channel owner, though!

Channels are a simple, beautiful way to showcase and watch videos. Browse more Channels.