Web Security

Nowadays the web applications are playing an important role in our IT world, that’s why securing the web applications and its environment in now more important than ever, the course helps students to understand the technologies that are being used under the different services and systems so that they are able to make informed decisions when choosing a cloud vendor. The course also covers the different types of cloud products, their working, their benefits and the migration process to the cloud. The Web Application security course enables the students to establish industry acceptable auditing standards with current best practices and policies specifically for the web applications and cloud environment. The students are able to learn, implement and penetration test the concepts taught in this course in real-world scenarios.

Course syllabus:

  1. Overview of web technologies

  2. Web application architecture

  3. Attack trends

  4. Authentication vulnerabilities

  5. Authorization vulnerabilities

  6. SSL vulnerabilities and testing

  7. Session vulnerabilities

  8. Cross-site request forgery

  9. Input-related flaws

  10. SQL injection

  11. Cross-site scripting

  12. Web services config security

  13. Vulnerability detection in web application

  14. Incident handling

  15. XML security

  16. AJAX technologies

  17. AJAX common attacks

  18. Invalid redirect and forwards

  19. Insecure direct object references