• Online, Self-Paced
Course Description

In this course, you will learn about ASP.NET MVC and Web API code security issues that affect MVC and Web API applications. You’ll learn methods to protect your application from attacks against MVC’s model-binding behavior, as well as methods to protect your application from cross-site scripting, cross-site request forgery, and malicious URL redirects. You will also understand the Web API pipeline and how to implement authentication and authorization in Web API applications.

Learning Objectives

On successful completion of this course, learners should have the knowledge and skills to identify common ASP.NET vulnerabilities and attacks.

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.