LTAT.04.013 Web Application Security
Course info
Responsible: Denizalp Kapisiz (denizalp.kapisiz@ UT)
Credits: 3 ECTS
Language: English
Assessment: differentiated (A, B, C, D, E, F, not present)
Lectures: Pre-recorded, Every Friday on Moodle by 23:59
Practice: Online meeting, Wednesday (Starting 22.03.2023) (14:15-16:00) (not compulsory)
Course Moodle: course link
General Information
In this course, we will cover common vulnerabilities and defense mechanisms for web applications according to OWASP guidelines. There will be weekly homework involving HTML5, JavaScript or PHP. Students are expected to have experience in web application development.
Grading
Final grade structure:
Homeworks: 40%
Final exam: 60%
Schedule
[March-17] 1. Introduction to Web Application Security
[March-31] 2. Cross-Site Scripting
[April-7] 3. Cross-Site Request Forgery
[April-14] 4. Authentication
[April-21] 5. Authorization
[April-28] 6. SQL Injection
[May-5] 7. Server Configuration and File Security
[May-17] Exam
[June-14] Exam (resit)