Charla impartida en la comunidad @XantarDev por @dariocp y @dagope
En cada enlace podremos ver las explicaciones y procedimientos de las demos
https://cheatsheetseries.owasp.org/cheatsheets/DotNet_Security_Cheat_Sheet.html
https://www.owasp.org/index.php/OWASP_.NET_Recommended_Resources
https://www.owasp.org/images/5/5e/OWASP-Top-10-2017-es.pdf https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf
https://www.owasp.org/index.php/Category:OWASP_.NET_Project
https://www.owasp.org/index.php/Category:OWASP_WebGoat.NET https://github.com/rapPayne/WebGoat.Net/tree/master/instructions
https://docs.microsoft.com/en-us/aspnet/core/security/?view=aspnetcore-3.0
https://docs.microsoft.com/en-us/aspnet/core/security/cross-site-scripting?view=aspnetcore-3.0
https://docs.microsoft.com/en-us/ef/core/querying/raw-sql
https://docs.microsoft.com/en-us/aspnet/core/security/anti-request-forgery?view=aspnetcore-3.0
https://docs.microsoft.com/en-us/aspnet/core/security/preventing-open-redirects?view=aspnetcore-3.0
--
https://www.infoq.com/presentations/owasp-top-10-vulnerabilities-2017/ https://www.youtube.com/watch?v=j9xM3Za98ak
https://www.saotn.org/free-ebook-owasp-top-10-net-developers/
https://dotnetcoretutorials.com/2017/10/11/owasp-top-10-asp-net-core-sql-injection
https://hdivsecurity.com/owasp-top-10