DevOps Zone is brought to you in partnership with:

Troy Hunt is a Software Architect and Microsoft MVP for Developer Security. He blogs regularly about security principles in software development at troyhunt.com and is the author of the OWASP Top 10 for .NET developers series and free eBook of the same name. Troy is also the creator of the recently released Automated Security Analyser for ASP.NET Websites at asafaweb.com. Troy is a DZone MVB and is not an employee of DZone and has posted 59 posts at DZone. You can read more from them at their website. View Full User Profile

Hack Yourself First and Other Security Tips for Web Developers

07.09.2013
| 2178 views |
  • submit to reddit

A little while back I wrote about Hacking yourself first and detailed a bunch of different ways for developers to seek out risks in their own apps, hopefully before attackers find them first. I’m extremely enthusiastic about this approach and believe that developers need to hone cyber-offence skills in order to properly understand – and protect their apps from – risks on the web. There’s a heap more content coming from me along these lines in a variety of formats and today it’s a free video discussion on SSW TV.

These guys do a bunch of great videos on various development topics that are up on their website for free, even including my user group talk on Protecting your web apps from the tyranny of evil with OWASP recorded last year (effectively walking through the OWASP Top 10 for ASP.NET). Today’s video is a chat with SSW’s Damian Brady and we touch on a heap of different issues related to the web, ASP.NET and security in general. It’s a casual, unscripted discussion that hopefully contains some useful info for the security-conscious developer.

Published at DZone with permission of Troy Hunt, author and DZone MVB. (source)

(Note: Opinions expressed in this article and its replies are the opinions of their respective authors and not those of DZone, Inc.)