Avoiding Common Security Issues with ASP.NET MVC and Web API ApplicationsSlides
Securing an AngularJS, MVC 5, Web API 2 mini-SPA web application with Identity Server v3 (with Bob Goodearl)Slides and Code

Western Mass Microsoft Technology Users Group - October 9, 2014

Securing your ASP.NET MVC ApplicationPdf

Boston .NET Architecture Group - September 17, 2014

Avoiding the Top 10 Secure Design Flaws summaryPdf Powerpoint

Microsoft DevBoston - August 14, 2014

Securing ASP .NET MVC ApplicationsSlides

2013

Western Mass Microsoft Technology Users Group - February 21, 2013

Introduction to Windows Identity Foundation 4.5Slides Code

2012

Connecticut .NET Developers Group - September 11, 2012

Introduction to Windows Identity Foundation 4.5Slides Code

2010

New England Code Camp 14: It's the Economy Stupid - October 2, 2010

Introduction to ASP.NET MVC 2Slides
Securing your Silverlight 4 ApplicationsSlides Code
Advanced ASP.NET MVC 2Slides Code

Connecticut .NET Developers Group - September 14, 2010

ASP.NET MVC 2: Best PracticesSlides

2007

Heartland Developers Conference 2007 - October 18-19, 2007

Session 101: Service-Oriented Design PatternsSlides
Session 313: Developing Queueing Applications with SQL Server Service BrokerSlides

New England Code Camp 8: Rise of the Silverlight Surfer - September 29, 2007

Penetration Testing of Web ApplicationsSlides
Secure Code Reviews: What Are the Ingredients?Slides

Boston .NET User Group - September 12, 2007

Web Services Security: Where are we now?Slides Code

Southern Connecticut .NET Users Group - June 12, 2007

Introduction to Windows CardSpaceSlides

DevTeach 2007 - May 14-18, 2007

Building Queuing Database Applications with SQL Server 2005 Service BrokerSlides and Code
Protecting Data Using SQL Server 2005 Encryption TechniquesSlides and Code

New England Code Camp 7: Deer in Headlights - March 31, 2007

How to Perform a Secure Code ReviewSlides and Code
Protect Data with SQL Server 2005Slides and Code

2006

Western Massachusetts .NET Users Group - December 5, 2006

Unit Testing and Test Driven Development (TDD)Slides

Heartland Developers Conference 2006 - October 26-27, 2006

Writing Queuing Database Applications with Service BrokerSlides
Building Reliable Applications with System.TransactionsSlides

VSLive! Boston 2006 - October 24-27, 2006

Leveraging .NET 2.0 Security FeaturesSlides
Writing Reliable Applications with System.TransactionsSlides
Instrumenting ASP.NET 2.0 Applications for Audit and SecuritySlides

New England Code Camp 6: Devs on a Plane - October 21, 2006

Building a Secure ArchitectureSlides
How to Perform a Secure Code ReviewSlides
Threat Modeling for Web ApplicationsSlides

Beantown .NET User Group - September 7, 2006

The Why and How of Security Code ReviewsSlides

Connecticut .NET Developers Group - August 22, 2006

Writing Queuing Database Applications with Service BrokerSlides Code

VSLive! Orlando 2006 - May 14-18

Leveraging .NET 2.0 Security FeaturesSlides Code

DevTeach 2006 - May 8-12, 2006

Queuing Database Applications with Service BrokerSlides Code
Reliable Applications with System.TransactionsSlides Code

New England Code Camp 5: Code Frenzy - May 6-7, 2006

Threat Modeling for Web ApplicationsSlides
Queuing Database Applications with Service BrokerSlides
Reliable Applications with System.TransactionsSlides

VSLive! San Francisco 2006 - January 31-February 1, 2006

Leveraging .NET 2.0 Security FeaturesSlides Images from Slides Code

2005

NESQL User Group - November 10, 2005

SQL Server SecuritySlides Code

OWASP Boston Chapter Meeting - November 2, 2005

Threat Modeling for Web ApplicationsSlides

MAD Security Code Camp - October 29, 2005

Eight Rules of SecuritySlides
Real World Threat ModelingSlides
SQL Server 2000 SecuritySlides

Heartland Developers Conference 2005 - October 14, 2005

Programming SQL Server using the hosted .NET RuntimeSlides and Code
Security Changes in .NET 2.0 and VS 2005Slides and Code

VSLive! Orlando 2005 - October 12, 2005

Security Changes in .NET 2.0Slides and Code

New England Code Camp 4: Developers Gone Wild! - September 24-25, 2005

SQL Server SecuritySlides
Introduction to System.Transactions in .NET 2.0Slides
Security Tools for .NET DeveloperSlides
What's new in Security for .NET 2.0Slides

New England VB User Group - August 4, 2005

VB.NET 2.0 Language ChangesSlides Code

VSLive! Boston 2005 - June 29, 2005

Writing Secure Plug-In Applications in .NETSlides

Vermont .NET User Group - April 11, 2005

Unit Testing, Test Driven Development, and NUnitSlides

New England Code Camp III: The Madness - March 12-13, 2005

SQL Server 2005 Service BrokerSlides Code
Penetration Testing of ASP.NET Web ApplicationsSlides
Security in ASP.NET 2.0Slides
SQL Server 2005 SecuritySlides Code

2004

Heartland Developers Conference 2004

SQL Server 2005 Service BrokerSlides Code

Connecticut .NET User Group - November 23 2004

.NET Code Access SecuritySlides Code

WIN-DEV 2004 East

S7 - Writing Least Privileged ApplicationsSlides Code
S8 - Hosting Applications in Secure AppDomainsSlides Code

New England Code Camp 2: The Return - October 16-17 2004

Developing as a Non-AdminSlides Code
SQL Server 2005 Service BrokerSlides Code
SQL Server SecuritySlides Code
Introduction to Code Access SecuritySlides Code
Writing Secure Windows Forms ApplicationsSlides Code

Robert Hurlbut - Presentations

Slides and Code from User Group and Conference Speaking Engagements

ThreatModCon 2023 - October 29, 2023

OWASP LASCON 2023 - October 27, 2023

Amherst Security Group - July 20, 2023

OWASP Boston Application Security Conference (BASC) 2023 - April 1, 2023

NH Cybersecurity Symposium 2023 - March 29, 2023

Amherst Security Group - March 16, 2023

Amherst Security Group - January 19, 2023

Boston .NET Architecture Group - January 18, 2023

Amherst Security Group - February 11, 2020

Boston Application Security Conference (BASC) 2019 - October 19,2019

Amherst Security Group - December 12, 2018

Boston Code Camp 30 - November 17, 2018

Granite State Code Camp 2018 - November 3, 2018

Amherst Security Group - September 12, 2018

Amherst Security Group - July 11, 2018

Western Mass Development Technology Users Group, October 19, 2017

Tech Valley .NET User Group, October 10, 2017

BSides CT 2017, October 7, 2017

New York Metro Joint Cyber Security Conference 2017, October 5, 2017

SOURCE Conference Seattle 2017, October 4, 2017

Vermont Code Camp 9 (VTCC9) - September 16, 2017

Danbury Area Computer Society (DACS) - August 1, 2017

BSides Chicago 2017 - July 15, 2017

Amherst Security Group - June 14, 2017

Boston .NET Architecture Group - May 17, 2017

Amherst Security Group - May 10, 2017

Microsoft DevBoston - July 7, 2016

OWASP Rhode Island - June 9, 2016

SOURCE Boston - May 18, 2016

NAISG Boston Chapter Meeting - March 8, 2016

O'Reilly Software Architecture Online Conference - March 1, 2016

OWASP Hartford - February 9, 2016

Tech Valley .NET User Group (TVUG) - January 12, 2016

Boston Code Camp 24 - November 21, 2015

Western Mass Development Technology Users Group - November 19, 2015

Boston OWASP AppSec Conference BASC 2015 - October 3, 2015

TECHIntersection - September 16, 2015

Security BSides Boston - May 9, 2015

Microsoft DevBoston - April 2, 2015

Boston Code Camp 23 - March 21, 2015

Western Mass Microsoft Technology Users Group - March 19, 2015

Boston Code Camp 22 - November 22, 2014