Hack Your API First
Microsoft developers have never had it better when it comes to connecting things to the internet – an awesome ASP.NET stack, powerful Web API and we can get it all up and running on Azure in minutes. But with great power, comes great responsibility and we often unknowingly misuse this power and create vulnerable APIs. The communication between modern devices and web servers is very easily identified, intercepted and manipulated by hackers on the web. In this session we’ll look at a modern Windows Phone app talking to Web API services on Azure and identify common security anti-patterns that put users at risk. We’re going to “Hack Ourselves First” so that we may learn of vulnerabilities in our software before online attackers do.
Any sample code, video, or other supporting content for this presentation (if available for this session) is loaded in the zip file.