Deploying IT Infrastructure Solutions 2013: Difference between revisions

From ICO wiki
Jump to navigationJump to search
Line 28: Line 28:


==Requirements for Students==
==Requirements for Students==
taotluse tekst
vt TAOTLUSE TEKST


aaaaaaaaa
aaaaaaaaa
'''bbbbbbbb'''  
'''bbbbbbbb'''  
*ccc
*ccc
==Partners==
==Partners==



Revision as of 12:13, 4 January 2013





Introduction

This is short introduction for this great event.


Benefits for Students

We offer a two weeks there students can put into good use the knowledge that they have from previous studies. Assignments are more practical and related to real-life problems.

vt TAOTLUSE TEKSTIST JUURDE

Student gets:

  • International team-work experience
  • Real assignment solving experience (real client, solid deadline)
  • Honest evaluation of skills and knowledge
  • Chance to work on tight schedule
  • Improve the documentation and presentation skills
  • Nice line in CV and nice solution what can be shown in interviews

Requirements for Students

vt TAOTLUSE TEKST

aaaaaaaaa bbbbbbbb

  • ccc

Partners

IP Project Partners


Assignments Partners

Timetable

Arriaval


Assignments

Security testing of web application.

Description

Learn about the security of web applications. Find vulnerabilities from known vulnerable web applications. Find not known vulnerabilities of development version of web application Study Information Portal (Used by eleven universities of applied science in Estonia) File report that describes methods, tests and findings.

Expected outcome

Description of testing methods and findings (all vulnerabilities that students found in development environment) as testing report.

Expectations from students

Understanding web applications (What is difference of GET and POST, how sessions work, what is header etc). Knowledge of at least one web programming language (php, java, ruby, C#, python is preferred)

Lectures support

Several security related topics will covered during lectures and practical classes before starting actual testing. Lecture covers several attack types and vulnerabilities like SQL injection, cmd injection, XSS, CSRF etc. Practical classes based on DVWA (Damn Vulnerable Web Application) After lectures and practical classes students will get access to web application development environment for practical work.

Lecturer: Margus Ernits (Estonian IT College)

Teams