Web Security Education Materials
Web Application Security ppt Slides:
The slides introduce cross-site scripting and SQL injection attacks and prevention mechanisms to secure a web application against these attacks.
Tutorial webpages to introduce students to input validation, output encoding, and SQL injection attacks. By reading the webpages, students can have a hands-on experience of how cross-site scripting and SQL injection attacks work and also get an idea of how to prevent these attacks. At the end of each webpage, there is a short quiz to assess student understanding of the security concepts.
This exercise will give students hands-on experience of how cross-site scripting and SQL injection attacks work, how to test their code to detect these vulnerabilities and finally how to write code to protect their application against these vulnerabilities.
ESIDE can detect four types of vulnerabilities: Lack of input validation, lack of output encoding, SQL Injection and access control. ESIDE also assist students in mitigating these vulnerabilities. This tutorial explains in detail how ESIDE can be used to secure web applications.
This exercise will give students a hands-on experience of how cross-site scripting and SQL injection attacks work, how to test their code to detect these vulnerabilities and finally how to secure their application against these vulnerabilities with the help of ESIDE.