Modern computer systems are almost universally connected, which creates wider attack surfaces well beyond code to users, hardware, and more. Securing systems is thus a fundamental skill for modern software engineers.

This course is a comprehensive introduction to cyber security best practices. You’ll start with an overview of common threats and vulnerabilities, as well as high-level concepts like privilege, integrity, logging, and mediation. With these concepts in mind, you’ll then learn common protection mechanisms and defense strategies from endpoint protection to firewalls, gateways, and proxy servers. Next, you’ll learn monitoring and detection techniques, alerts, and event management. Finally, when you detect a threat, you’ll know how to respond with support tickets, data preservation, and change management.

By the end of this course, you’ll have a better understanding of modern cyber security practices and a clear roadmap to implementing these as a developer.

Cyber Security Best Practices for Developers

## Overview

Several security solutions have been integrated into operating systems, providing new and innovative ways to protect a device from attacks. New protection mechanisms are discovered as a result of analyzing past attacks. Microsoft has received a priceless education in dealing with security issues with its software. As a result, they can be considered one of the most security-aware software vendors today.

## Address space layout randomization (ASLR)

**Address space layout randomization (ASLR)** was developed in response to attackers taking advantage of how operating systems used memory. Attackers were able to determine where in-memory objects were stored. The locations were the same regardless of what computer was used because the software loaded objects in memory the same way every time due to how software and operating systems used memory. This made the memory predictable, which allowed attackers to manipulate objects in memory and attack.




# Overview

Several security solutions have been integrated into operating systems, providing new and innovative ways to protect a device from attacks. New protection mechanisms are discovered as a result of analyzing past attacks. Microsoft has received a priceless education in dealing with security issues with its software. As a result, they can be considered one of the most security-aware software vendors today.

# Address space layout randomization (ASLR)

**Address space layout randomization (ASLR)** was developed in response to attackers taking advantage of how operating systems used memory. Attackers were able to determine where in-memory objects were stored. The locations were the same regardless of what computer was used because the software loaded objects in memory the same way every time due to how software and operating systems used memory. This made the memory predictable, which allowed attackers to manipulate objects in memory and attack.




Learn about address space layout randomization (ASLR), data execution prevention (DEP), and containerization, which provide host-based security to an organization.

Introduction

Basics of Security

Detect

Protect

Respond

Conclusion

Secure Memory

Overview

Address space layout randomization (ASLR)