Self-study Lecture on Web security to (also to prepare for Lab W)

Content

Web attacks and countermeasures: cross-site scripting, cross-site request forgery, SQL injection, etc.

Related lab: W and bonus

Reading

check the slides and the links on the last page (demo) to familiarize yourself with some code, so that you can follow the demo. Even if there are different demos at the lecture, you'll then already know some patterns and can see what happens.

OWASP Top 10  (2017), Links to an external site.presented differently and updated for 2018, and draft for peer review for 2021 Links to an external site.

Slides

slides (pdf) Download slides (pdf)

Additional resources

1. links in slides

Videos

no pre-recorded videos; the lecture was live on zoom in 2020, but here's a recording of that live session [1h35m].

Lecturers

Elisia Chessel and Benjamin Greschbach (Spotify)