Skip to content

Omegapoint/defence-in-depth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

89 Commits
identity
identity
 
 
rest-api
rest-api
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
defence-in-depth.sln
defence-in-depth.sln
 
 
requests.http
requests.http
 
 

Repository files navigation

Defence in depth implementation

Source code samples for "Defence in Depth" articles and presentations.

This is an accompanying implementation of a secure REST API in .NET 10 that follows the series of articles found at:

https://securityblog.omegapoint.se

An article that covers these concepts exactly can be found at:

https://securityblog.omegapoint.se/en/secure-apis-by-design

https://securityblog.omegapoint.se/en/test-driven-appsec

Presentation of this material can be found at YouTube:

https://youtu.be/V-SgiA-D9r0 (NDC Security 2023, demos in .NET)

https://youtu.be/6dgwzjuWhl0 (Jfokus 2025, demos in Java)

Java repo at https://github.com/Omegapoint/defence-in-depth-java

The approach follows that of the book "Secure by Design":

https://www.manning.com/books/secure-by-design

The repo also contains a token service for demo and education purposes built with Duende Identity Server:

https://github.com/DuendeSoftware/IdentityServer

About

Source code samples for "Defence in Depth" articles and presentations.

omegapoint.se/defence-in-depth

Topics

security application-security secure-by-design

Resources

Readme

Security policy

Security policy
Activity
Custom properties

Stars

38 stars

Watchers

3 watching

Forks

6 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages