Welcome to the Central Penn .NET Users Group...
Tuesday, May 15, 2012
5:30 PM to 7:30 PM
3rd Floor, 470 Friendship Road, Harrisburg, PA (up the hill from Bass Pro and the Harrisburg Mall)
Topic: Hack Proofing your ASP.Net Web Forms and MVC applications
Developers are notoriously lax with including security in their applications. In an age of hacking, this talk aims to arm the developer with an arsenal of protections to use while developing. This presentation explores the most common attacks on web applications, how they work to exploit your app, and most importantly, how to protect against them. Techniques such as Cross Site Scripting, SQL Injection, Session Hijacking, and Cross Site Request Forgery will be covered. Web Forms and MVC will be covered, as both have pros and cons that will be explored. We will start with a 'broken' application and secure it throughout the presentation. Leave this presentation empowered to immediately start protecting your applications!
You will learn:>Learn why most existing applications can be hacked in some wayLearn the details of common hack attacks in ASP.NET Web ApplicationsLearn the techniques for protecting their web forms and mvc applications against hack attacks
Speaker: Adam Tuliper (INETA Speaker)
 | Adam currently works as a Software Architect and has been developing software for over 16 years. He started his work in security and reverse engineering (x86 based - pre .NET) with the direction of going into the software protection and anti-piracy field. This gave him a foundation for learning the internals of other technologies from Win32 systems to CLR systems. Adam has performed security audits and penetration tests for large corporations and small companies alike. He has been deeply involved in .Net internals since early beta and currently works extensively in WCF, ASP.Net, Sql Server, MVC, C#, and Silverlight. He presents nationwide conferences such as VSLive! and Tech Ed as well as various .Net user groups across the USA. He has just completed a hack proofing video series for www.pluralsight.com and look for his recent security articles in MSDN Magazine December 2011/January 2012. His Pluralsight.com security course can be seen at: http://www.pluralsight-training.net/microsoft/Courses/TableOfContents?courseName=hack-proofing-dotnet-app |
Free event: State of .NET - Road to Windows 8
www.StateOfDotNet.com
Looking for a new position? New to the area? Check our Forum for the latest postings.
Publisher News
THANKS to the following publishers for their support of our 2011 Code Camp! Click on the logos to visit their sites.
O'REILLY Webcasts
- Mobile First
- Sync & Swim with CouchDB for Mac & iOS
- Create Better PowerPoint 2010 Presentations More Easily
- Conducting a Technical Interview
- Practical and Pragmatic Application of PMI Standards
- plus ... many other selections in their video archive
The Central Pennsylvania .NET Users Group is a voluntary association of information technology professionals and enthusiasts who meet monthly with regionally and nationally known speakers to share information, ideas, and experience using Microsoft Visual Studio .NET and related technologies.
Central Penn .NET Users Group meets the third Tuesday of the month from January through November in Harrisburg, PA. Register in the Calendar. For more information contact Judy Calla at jcalla@pnat.com and she will have one of our Board members or committee chairmen contact you. Welcome to our group!