
ASP.NET Core 5 Secure Coding Cookbook
By :

An adversary will always try to gain access to the system and beat its authentication mechanism. The most prevalent way of doing this is by using compromised credentials, collected from illicit sources, or as simple as having a list of common passwords, which can be found on the web. These attacks can be executed with automation using a crafted script or a tool.
An ASP.NET Core web application must withstand this exploitation by implementing defensive measures. This helps with rejecting excessive authentication attempts and writing secure code.
In this recipe, we will identify the root cause of vulnerabilities in code and mitigate the issue by enabling the lockout feature.
Using Visual Studio Code, open the sample Online Banking app folder at \Chapter03\improper-auth\before\OnlineBankingApp
.
Follow these steps: