re: Net Core security - NWebSec to the rescue! VIEW POST

FULL DISCUSSION
 

Thanks Laura, a nice way to sort out response headers :)

OWASP have (as ever), lots more good advice on [ASP].NET security to cover a few more of the typical risks in web applications, and Microsoft have a good security for .NET Core introduction too:

owasp.org/index.php/.NET_Security_...
docs.microsoft.com/en-us/aspnet/co...

Like a lot of security controls, it's good to understand /why/ we should use them too, so thanks for starting with a couple of principals!

owasp.org/index.php/Security_by_De...

code of conduct - report abuse