If your site is allowed to be IFRAMEd by another site and thus would be susceptible to click-jacking. This can be prevented by setting X-Frame-Options header or CSP. Setting X-Frame-Options explained in this article.
Restrict access to your website using IIS IP security
In this post, I am sharing one of my security bug hunting experience in an older ASP.NET web form project.
A crucial security feature in Windows Defender comes disabled by default: Ransomware Protection...