MS .NET DEVELOPER
Training Opportunity in Saudi Arabia & Pakistan [2 Years work experience]
We are looking for trainer who has expertise in .NET including following topics:
• General Web Application Security Concepts
• .NET Framework Security Features
• Input Validation & Encoding
• Input Driven Attacks
• Validation Best Practices
• Output Encoding
• Common Authentication Weaknesses
• Authorization Best Practices
• Controlling Application Access
• Password Security
• Session Hijacking & Trapping
• Protecting User Sessions & Tokens
• Canonicalization Problems
• Parameter Manipulation
• Encryption, Confidentiality & Data Protection
• Cookie-Based Attacks
• Protecting Application Variables
• Error Handling & Logging
• Attacking via Error Messages
• Secure Logging & Error Handling
• Server Configuration & Code Management
• Common App Server Misconfigurations
• Protecting Application Code
• XML Web Services
• Overview of WSDL, SOAP & AJAX Security
• Web Service Attacks
• AJAX Pitfalls
• Web Service Best Practices
• Application Threat Modeling
• Application Context
• Identifying Attacks, Vulnerabilities & Countermeasures
• Threat Modeling Tools
• Cache Control Issues
• SSL Best Practices
.