Difference between revisions of "Deploying IT Infrastructure Solutions 2013"

From ICO wiki
Line 17: Line 17:
===IP Project Partners===
===IP Project Partners===
* [http://www.itcollege.ee/en/ Estonian IT College]
* [http://www.puv.fi/en/ Vaasan ammattikorkeakoulu (VAMK), University of Applied Sciences]
===Assignments Partners===
===Assignments Partners===

Revision as of 11:43, 4 January 2013

EL Sotsiaalfond horisontaal small.jpg

Short Introduction

This is short introduction for this great event.

aaaaaaaaa bbbbbbbb

  • ccc


IP Project Partners

Assignments Partners




Security testing of web application.


Learn about the security of web applications. Find vulnerabilities from known vulnerable web applications. Find not known vulnerabilities of development version of web application Study Information Portal (Used by eleven universities of applied science in Estonia) File report that describes methods, tests and findings.

Expected outcome

Description of testing methods and findings (all vulnerabilities that students found in development environment) as testing report.

Expectations from students

Understanding web applications (What is difference of GET and POST, how sessions work, what is header etc) Understanding web programming at least one language (php, java, ruby, C#, python is preferred)

Lectures support

Several security related topics will covered during lectures and practical classes before starting actual testing. Lecture covers several attack types and vulnerabilities like SQL injection, cmd injection, XSS, CSRF etc. Practical classes based on DVWA (Damn Vulnerable Web Application) After lectures and practical classes students will get access to web application development environment for practical work.

Lecturer: Margus Ernits (Estonian IT College)