ASP.NET Core SPA Cookie Authentication vs XSRF - Securing Against Cross-Site Attacks
Offered By: Raw Coding via YouTube
Course Description
Overview
Learn how to secure your Single Page Application (SPA) against Cross-Site Request Forgery (XSRF/CSRF) attacks using ASP.NET Core cookie authentication. Explore various attack scenarios, including cross-site login attempts with fetch and form posts, and implement effective defense strategies such as Origin and Referer checks. Discover the differences between Strict and Lax cookies, and understand the potential risks of man-in-the-middle attacks. Gain practical knowledge on implementing robust security measures for your ASP.NET Core SPA using C# minimal APIs, applicable to .NET 7, .NET 6, and .NET 5.
Syllabus
Introduction
Attack 1: cross site login with fetch
Attack 2: cross site login with form post
Defence: Origin & Referer
Attack 3: cross site request execution
Strict vs Lax Cookies
Man in the middle attack
Taught by
Raw Coding
Related Courses
Desarrollo de Aplicaciones Web: Nivel de PresentaciĆ³nUniversity of New Mexico via Coursera Front End Frameworks
Google via Udacity Front-End JavaScript Frameworks: Angular
The Hong Kong University of Science and Technology via Coursera Front-End Web Development with React
The Hong Kong University of Science and Technology via Coursera Desarrollo de pƔginas con Angular
Universidad Austral via Coursera