Web Security Education Materials

Web Application Security ppt Slides:

The slides introduce cross-site scripting and SQL injection attacks and prevention mechanisms to secure a web application against these attacks.

Security Webpages:

Tutorial webpages to introduce students to input validation, output encoding, and SQL injection attacks. By reading the webpages, students can have a hands-on experience of how cross-site scripting and SQL injection attacks work and also get an idea of how to prevent these attacks. At the end of each webpage, there is a short quiz to assess student understanding of the security concepts.

Security Exercise:

This exercise will give students hands-on experience of how cross-site scripting and SQL injection attacks work, how to test their code to detect these vulnerabilities and finally how to write code to protect their application against these vulnerabilities.

ESIDE Tutorial:

ESIDE can detect four types of vulnerabilities: Lack of input validation, lack of output encoding, SQL Injection and access control. ESIDE also assist students in mitigating these vulnerabilities. This tutorial explains in detail how ESIDE can be used to secure web applications.

Security Exercise for ESIDE:

This exercise will give students a hands-on experience of how cross-site scripting and SQL injection attacks work, how to test their code to detect these vulnerabilities and finally how to secure their application against these vulnerabilities with the help of ESIDE.

Prospective Students

Faculty and Staff

Current Students

Alumni and Friends

Web Security Education Materials