LTAT.04.013 Web Application Security
Course info
Responsible: Denizalp Kapisiz (denizalp.kapisiz@ UT)
Credits: 3 ECTS
Language: English
Assessment: differentiated (A, B, C, D, E, F, not present)
Lectures: Pre-recorded. Links posted on Moodle by every Friday 23:59
Practice: Tuesday, (not compulsory - consultation time)
Course Moodle: course link
General Information
In this course, we will cover common vulnerabilities and defense mechanisms for web applications according to OWASP guidelines. There will be weekly homework involving HTML5, JavaScript or PHP. Students should be familiar with browsers and web applications.
Grading
Final grade structure:
Homeworks: 40%
Final exam: 60%
Schedule
[March-18] 1. Introduction to Web Application Development
[March-25] 2. Introduction to Web Application Security
[April-1] 3. Cross-Site Scripting
[April-8] 4. Cross-Site Request Forgery
[April-22] 5. Authentication
[April-29] 6. Authorization
[May-6] 7. SQL Injection
[May-13] 8. Server Configuration and File Security
[May-24] Exam