Skip to content

phonedude/cs533-f24

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

72 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

ODU CS 433/533 Web Security, Fall 2024

Instructor: Michael L. Nelson [email protected]

Office Hours: Wednesdays 2-4 and by appointment

Time: Asynchronous, online

Place: Asynchronous, online -- contact [email protected] for the Youtube Playlist URL.

Syllabus

Class Email list: https://groups.google.com/group/cs533-f24

CRNs: 20312, 20313, 20314 (433) and 20315, 20316, 20317 (533)

Course Objectives

The goal of this course is to review common web security vulnerabilities and exploits, as well as their corresponding defenses. There is an inherent tension between "web as simple document reader" and "web as application environment", and as the functionality of the web ecosystem increases, so do the vulnerabilities.

General concepts that students will learn: principles of web security, attacks and countermeasures, the browser security model, web app vulnerabilities, injection, denial-of-service, TLS attacks, privacy, fingerprinting, same-origin policy, cross site scripting, authentication, JavaScript security, emerging threats, defense-in-depth, techniques for writing secure code, web archiving, rehosting.

Specific technologies that students will learn: Git/GitHub, DOM/Javascript, CLI, Node.js, Twitter, Youtube.

Course Inspiration

This course is based on CS 253 Web Security, Stanford, Fall 2019. Special thanks to Feross Aboukhadijeh for generously sharing his course materials (although any errors are mine).

Class Schedule (subject to change; slides will be updated prior to class)

Assignments (subject to change)

About

ODU CS 433/533 Web Security, Fall 2024

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published