Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications

Improve the security of your ASP.NET (Core or Framework) web applications by scanning both the code you write and the packages you use in those applications. Even better, include those scans in automated build pipelines!


Scanning your custom web application code for common vulnerabilities and scanning the packages that your applications reference can improve the security of your ASP.NET (Core and Framework) web applications. In this course, Using Security Analysis Tools to Protect ASP.NET and ASP.NET Core Applications, you will learn foundational knowledge of/gain the ability to add these types of scans both into your development setup, and automated build pipelines. First, you will learn static code analysis and how to get a security-focused static code analyzer to scan your application code. Next, you will discover package vulnerability scanning, which will analyze the packages your application relies on against a database of known vulnerabilities. Finally, you will explore how to incorporate both of these types of scan into automated build pipelines. When you’re finished with this course, you will have the skills and knowledge of security application scanning needed to improve the overall security of your ASP.NET and ASP.NET Core web applications.

• Course Overview 1min
• Applying Static Code Analysis (SCA) 21mins
• Detecting Vulnerable Libraries 24mins
• Adding SCA and Vulnerable Library Detection to Build Pipelines 33mins